TIBCO is aware of the recently announced OpenSSL vulnerabilities CVE-2022-3786 and CVE-2022-3602.
TIBCO is actively assessing the risk of this vulnerability and will respond as appropriate.
TIBCO is actively monitoring the still evolving situation and updates with regards to OpenSSL and our Product Security Incident Response Team (PSIRT) is actively evaluating how these vulnerabilities may affect TIBCO products and cloud services.
We will provide updates as more information becomes available and we complete our investigation. This information will include which TIBCO products and services are affected, if any, and how customers and users of those products and services can best mitigate or protect themselves from being exploited by these vulnerabilities.
OpenSSL Status for TIBCO Products
(applies to versions that are currently in Standard Support)
The below products have been identified as potentially impacted. If a product is not on the list below, it is not impacted.
Short Term Mitigations and Service Packs are hotlinked in the product name.
Legend
✅ - Unaffected or Already Remediated
🛠️ - Remediated through Service Pack or Short Term Mitigation
🔍 - Under Investigation
|
TIBCO Product |
||
|
TIBCO Cloud™ Messaging |
🔍 |
🔍 |
|
TIBCO® Data Virtualization |
🔍 |
🔍 |
|
TIBCO eFTL™ version 6.9.1 |
🛠️ |
🛠️ |
|
🛠️ |
🛠️ |
|
|
TIBCO FTL® version 6.9.1 |
🛠️ |
🛠️ |
|
TIBCO Rendezvous® version 8.6.1 |
🛠️ |
🛠️ |
|
TIBCO® Streaming |
🔍 |
🔍 |
