Jump to content

Nessus reports High Vulnerability OpenSSL 1.1.1 < 1.1.1l

Recommended Posts

I currently have a setup involving Eset Protect Server and Apache Proxy
This is located on a PCI Compliant system so as part of it I need to run Nessus scans every so often
I've updated to the latest Eset versions recently
but there seems to be a single High Vulnerability showing on the Nessus Reports associated with Apache Proxy

OpenSSL 1.1.1 < 1.1.1l Vulnerability

Port 3128
Banner           : Apache/2.4.46 (Win64) OpenSSL/1.1.1i-dev
Reported version : 1.1.1i
Fixed version    : 1.1.1l

Other Links:

Can I ask is this something I need to worry about?, will it be addressed in a future Eset Protect update?
It looks like a similar query was raised here back in September
Although I don't think an update to Apache Proxy has been rolled out as part of the latest Eset Protect Version 9

Many Thanks

Link to comment
Share on other sites

  • ESET Moderators

Hello @RichardW,

the latest Apache HTTP Proxy offered by ESET is https://www.eset.com/int/business/download/eset-protect/#standalone and it should use OpenSSL 1.1.1l

so would recommend to upgrade to it and run the test again...

Regards, Peter

Link to comment
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...