[R1] SecurityCenter 5.7.1 Fixes Multiple Third-Party Vulnerabilities

2018-09-12T20:36:12
ID TENABLE:2D3BC7CF9AD9DC6408F9173297D9C791
Type tenable
Reporter Arnie Cabral
Modified 2018-09-12T20:36:12

Description

SecurityCenter leverages third-party software to help provide underlying functionality. Two separate third-party components (PHP and OpenSSL) were found to contain vulnerabilities, and updated versions have been made available by the providers.

Out of caution and in line with good practice, Tenable opted to upgrade the bundled libraries to address the potential impact of these issues in SecurityCenter. SecurityCenter 5.7.1 updates PHP to version 7.1.21 and OpenSSL to version 1.0.2o to address the identified vulnerabilities.