Scheduled maintenance is currently in progress. We will provide updates as necessary.
Posted Nov 02, 2022 - 16:45 PDT
Scheduled
On this page, we provide the latest update of the potential impact of the recently announced OpenSSL vulnerabilities(https://www.openssl.org/blog/blog/2022/11/01/email-address-overflows/) on Apigee products and services. Investigations are ongoing as this is a developing event. We will continue to assess potential impact as we learn more, and we will update this post with details on any impacted Apigee products and services.
As Apigee components do not explicitly install the OpenSSL package in the base images, Apigee products are not found to be impacted with the OpenSSL vulnerability reported on OpenSSL 3.x.
As of this publication, we have found no evidence of any exploitation activities.
We’ll share more information with customers as it becomes available and update this page with the results of our investigation and any guidance if appropriate.