Change Download Preference


{{errorInSavingPref}}
Current Preference
{{dwnldPreference}}
Change Preference to:

Response to the OpenSSL (Heartbleed) Vulnerability

Last Updated: April 11, 2014

The CA Technologies Product Vulnerability Response Team has reviewed our product portfolio and confirmed that CA RiskMinder (Arcot RiskFort) incorporates a vulnerable version of OpenSSL 1.0.1 ("Heartbleed") in a way that does NOT compromise security.

CA RiskMinder (Arcot RiskFort) client components use OpenSSL 1.0.1e in a way that does NOT compromise security. CA RiskMinder (Arcot RiskFort) server components use OpenSSL 0.9.8.x, which is not vulnerable.