Skip to main content
System StatusContact Support
VersionOne Community

Was VersionOne affected by the Heartbleed security vulnerability?

This feature is available in all editions.

editions-all.png

Answer

No. The Heartbleed vulnerability was publicly disclosed on Monday, 4/7/14.  It involves a serious security flaw with specific versions of OpenSSL.

The VersionOne application itself does not use OpenSSL at all, so it was not impacted.  In our hosting environment we use F5 Load Balancers for SSL which were using a non-affected version of OpenSSL (v0.9.8e) at the time the vulnerability was uncovered, so also not impacted.

More Information

For additional in-depth technical information regarding this issue, contact VersionOne Support.