Vulnerability
Description
A critical vulnerability exists in TLS and DTLS implementations within OpenSSL versions 1.0.1 prior to 1.0.1g. Exploitation of this issue enables remote attackers to read arbitrary memory locations, potentially exposing sensitive information.
Recommendation
Upgrade to OpenSSL 1.0.1g or later. Re-issue HTTPS certificates and regenerate asymmetric private keys and shared secret keys, as these may have been compromised.
Written by
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
