OpenSSL vulnerability (Heartbleed security bug)

Heartbleed is a security bug disclosed in April 2014 in the OpenSSL cryptography library, which is a widely used implementation of the Transport Layer Security (TLS) protocol. Heartbleed may be exploited regardless of whether the party using a vulnerable OpenSSL instance for TLS is a server or a client.

The CVE ID for heartbleed is: CVE-2014-0160.

Impact: Older releases of Data Center RUM & AppMon were initially affected, but have been addressed.

Solution:

  • DC RUM: This vulnerability was fixed in the Data Center RUM 12.2.1, 12.3.0 releases. Older releases of DC RUM can be patched. For more information, see OpenSSL Vulnerability also known as Heartbleed Bug.
  • AppMon: This vulnerability was fixed in AppMon 6.0 and all subesequent versions.

Get article updates or report security vulnerabilities

Dynatrace takes a proactive approach in communicating security vulnerability information to customers. Learn more about Dynatrace security and our security policy. To report a security issue, email security@dynatrace.com.

RSS feed Report issue