Categories
Knowledge Support Support Categories exacqVision Hardware Products

exacqVision and Heartbleed

In April 2014 a Security Advisory was issued by the OpenSSL project notifying the public of a serious vulnerability in the encryption software used by a large number of companies. (For detailed information, visit http://heartbleed.com/.) Exacq Technologies took immediate action to assess how this affects its products.

<br>

exacqVision uses OpenSSL for a few functions, but the version affected is used only in a small number of exacqVision products:

<br>

exacqVision Server and Client 6.0 for Window

OpenSSL 1.0.1e is used in exacqVision 6.0, released in March 2014. However, the use of this product is not subject to the Heartbleed vulnerability. You can optionally upgrade to the latest version that includes updated OpenSSL at https://exacq.com/support/downloads.php.

<br>

exacqVision S-Series


exaqVision S-Series systems use Ubuntu 12.04, which includes the affected version of OpenSSL. However, only specific non-default configurations expose the system to the Heartbleed vulnerability. See https://exacq.com/kb/?crc=61212 details.

<br>

exacqVision-and-Heartbleed-1.pdf