IBM Support

WebSphere Commerce is not affected by the OpenSSL Heartbleed vulnerability (CVE-2014-0160)

Flash (Alert)


Abstract

WebSphere Commerce is not vulnerable to the CVE-2014-0160 OpenSSL Heartbleed vulnerability

Content

WebSphere Commerce in all editions and all platforms is NOT vulnerable to the OpenSSL Heartbleed vulnerability (CVE-2014-0160) because it does not use OpenSSL.

Remediation: No action required.

Change History: 10 April 2014: original document published

Related information

A Japanese translation is available

Document information

More support for: WebSphere Commerce Enterprise
Security

Software version: 6.0, 7.0

Operating system(s): AIX, IBM i, Linux, Solaris, Windows

Software edition: All Editions

Reference #: 1670023

Modified date: 10 April 2014