OpenSSL vulnerabilities in Defender for latest version Microsoft Products
Zach Hyman
80
Reputation points
My org has several OpenSSL vulnerabilities for OneDrive and Azure Disk Encryption. The CVEs are CVE-2024-4603, CVE-2024-4741, CVE-2024-5535, and Defender was said to fix inaccuracies with these last month (Sept. 2024). https://learn.microsoft.com/en-us/defender-vulnerability-management/fixed-reported-inaccuracies
See attached the file paths I am working with. I exported them into Excel as Application Name, Installed Version of OpenSSL, CVEs, and Path. Are these false positives?
Sign in to answer