Heartbleed is a security bug disclosed in April 2014 in the OpenSSL cryptography library, which is a widely used implementation of the Transport Layer Security (TLS) protocol. Heartbleed may be exploited regardless of whether the party using a vulnerable OpenSSL instance for TLS is a server or a client.
The CVE ID for heartbleed is: CVE-2014-0160.
Impact: Older releases of Data Center RUM & AppMon were initially affected, but have been addressed.
- DC RUM: This vulnerability was fixed in the Data Center RUM 12.2.1, 12.3.0 releases. Older releases of DC RUM can be patched. For more information, see OpenSSL Vulnerability also known as Heartbleed Bug.
- AppMon: This vulnerability was fixed in AppMon 6.0 and all subesequent versions.