Submit a ticketCall us

Training ClassSign up for Network Performance Monitor (NPM) and Scalability instructor-led classes

Attend our instructor-led classes, provided by SolarWinds® Academy, to discuss the more advanced monitoring mechanisms available in NPM as well as how to tune your equipment to optimize its polling capabilities. NPM classes offered:
NPM Custom Monitoring and Polling
Orion Platform Scalability

Reserve your seat.

Home > Success Center > Log & Event Manager (LEM) > LEM - Knowledgebase Articles > CVE-2016-2107 and CVE-2016-2108 Vulnerabilities

CVE-2016-2107 and CVE-2016-2108 Vulnerabilities

Table of contents
Created by Tim Rush, last modified by Steven Bansil_ret on Jun 29, 2016

Views: 1,299 Votes: 0 Revisions: 5

Overview

This article provides information about OpenSSL vulnerabilities in LEM version 6.2.1 and earlier.

Since we do not use OpenSSL in LEM, these vulnerabilities do not affect the LEM appliance.

CVE-2016-2107 - OpenSSL vulnerability  ==> https://web.nvd.nist.gov/view/vuln/d...=CVE-2016-2107

CVE-2016-2108 - OpenSSL vulnerability  ==> https://web.nvd.nist.gov/view/vuln/d...=CVE-2016-2108

 

Environment

  • LEM versions 6.2.1 and earlier
  • OpenSSL versions earlier than 1.0.2c. (OpenSSL 1.0.2c and later is fixed)

Detail

We are working to resolve these OpenSSL vulnerabilities in a future release of LEM.

 

 

 

Last modified

Tags

Classifications

Public