Synced 17 Jun 2026 22:27 UTC Account
← All products

OpenSSL

OpenSSL · Infrastructure
↻ RSS feed
Monitors OpenSSL and tailors your dashboard to that exact version.
4.0.1 · latest cycle/100 Unknown

Summary iPlain-English security verdict for OpenSSL, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.

OpenSSL's security status could not be assessed at the last sync — vulnerability data was unavailable.

Disclosure trend iNew CVEs published for OpenSSL each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.

'19
'20
'21
'22
'23
'24
'25
'26

Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.

No urgent unpatched issues identified. ✓

Get alerted about OpenSSL

Be emailed the moment OpenSSL gets a newly exploited vulnerability (CISA KEV) or a release reaches end of life. Free · double opt-in · unsubscribe anytime.

We email only on real events for OpenSSL — no marketing, no sharing, and we never know what you run. Track your whole stack →

Monitor up to 200 products — freeHit ☆ Monitor on anything you run, then sign in (no password) to sync your stack across devices and unlock smart insights, risk history & CSV/JSON exports. Sign in free →

Versions & lifecycle iWhen each release line stops receiving security patches (end-of-life). After EOL there are no more fixes — plan upgrades before these dates.

How long each OpenSSL release line is supported — and when it sunsets. Select a line for its full report.

Apr8'30 OpenSSL 3.5EOL 2030-04-08
May14'27 OpenSSL 4.0EOL 2027-05-14
Nov1'26 OpenSSL 3.6EOL 2026-11-01
Oct22'26 OpenSSL 3.4EOL 2026-10-22
Sept7'26 OpenSSL 3.0EOL 2026-09-07
Apr9'26 OpenSSL 3.3ended 2026-04-09
Nov23'25 OpenSSL 3.2ended 2025-11-23
Mar14'25 OpenSSL 3.1ended 2025-03-14
Sept11'23 OpenSSL 1.1.1ended 2023-09-11
Dec31'19 OpenSSL 1.0.2ended 2019-12-31
Sept11'19 OpenSSL 1.1.0ended 2019-09-11
Dec31'16 OpenSSL 1.0.1ended 2016-12-31

Full OpenSSL end-of-life dates & support timeline →

4.0 latest 4.0.1 Supported until 2027-05-144.0.1 → 3.6 latest 3.6.3 Supported until 2026-11-013.6.3 → 3.5 latest 3.5.7 Supported until 2030-04-083.5.7 → 3.4 latest 3.4.6 Supported until 2026-10-223.4.6 → 3.3 latest 3.3.7 End of life ended 2026-04-093.3.7 → 3.2 latest 3.2.6 End of life ended 2025-11-233.2.6 → 3.1 latest 3.1.8 End of life ended 2025-03-143.1.8 → 3.0 latest 3.0.21 Supported until 2026-09-073.0.21 → 1.1.1 latest 1.1.1w End of life ended 2023-09-111.1.1w → 1.1.0 latest 1.1.0l End of life ended 2019-09-111.1.0l → See all upcoming end-of-life dates →

Frequently asked

Is OpenSSL safe and patched?

OpenSSL's security status could not be assessed at the last sync — vulnerability data was unavailable.

What should I do about OpenSSL now?

Upgrade OpenSSL to the latest supported release (4.0.1) or later and apply available security updates, then confirm against OpenSSL's official advisory.

When does OpenSSL reach end-of-life?

The latest supported OpenSSL release is 4.0.1. After end-of-life a release no longer receives security patches.

Which versions of OpenSSL are still receiving security updates?

Supported OpenSSL release lines (latest 4.0.1): 4.0, 3.6, 3.5, 3.4, 3.0. End-of-life releases no longer receive security patches.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against OpenSSL's official advisory before you patch or upgrade — OpenSSL official site ↗