Illumina Connected SoftwareIllumina.comIllumina Support

Information Regarding OpenSSL v3 Vulnerability

What is OpenSSL?

A: OpenSSL is an open-source command line tool that is commonly used to generate private keys, create Certificate Signing Requests (CSRs), install Secure Socket Layer/Transport Layer Security (SSL/TLS) certificates, and identify certificate information.

What vulnerabilities were recently disclosed?

A: Two vulnerabilities were recently identified in several sub-versions of the v3 release that would allow attackers to compromise affected systems. For more detailed information, please see the following links:

CVE-2022-3786

CVE-2022-3602

What versions are affected?

A: Versions v3.0.0 - v3.0.7 are affected.

Does Illumina software or instrumentation currently use any of the affected versions?

A: Though Illumina instruments and cloud platforms do utilize this tool, upon rapid investigation by our Product Development and Global Information Security (GIS) teams, it was determined that neither Illumina instruments or cloud infrastructure utilizes the versions listed in the notification.

For any feedback or questions regarding this article (Illumina Knowledge Article #7171), contact Illumina Technical Support techsupport@illumina.com.

Last updated

© 2023 Illumina, Inc. All rights reserved. All trademarks are the property of Illumina, Inc. or their respective owners. Trademark information: illumina.com/company/legal.html. Privacy policy: illumina.com/company/legal/privacy.html