This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 90%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESJ%3C/text%3E%3C/svg%3E)
The version of OpenSSL installed on the remote host is prior to 3.0.14. It is, therefore, affected by a vulnerability as referenced in the 3.0.14 advisory.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 74%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
How is this related to PowerShell?
Is there a question here? Or is this just a statement?
What is the best method of updating OpenSSL on a Windows Server 2019? The current version is 3.0.12.
Still not a PowerShell question . . .
I'd expect the way to update the version of OpenSSL is to download the version of the software from the same place you got the version you're currently running and then distribute the update to your servers using whatever software distribution method you use for any other 3rd-party applications.
Might be confusing OpenSSL with OpenSSH which was integrated into Windows and can be installed as a Windows feature. I believe (but not sure) that OpenSSH gets updated via Windows update.
OpenSSL looks to be just another 3rd party application. Maybe it got bundled (installed) with some other software product.
Refer to the OpenSSL documentation.
@MotoX80 I thought that, too. However, the version number in the OPs question is in line with the version numbers for OPENSSL.
In that case the answer is fairly standard... download the newest version to a test server, run it, and see if it installs. If it doesn't work, uninstall the old version, reboot, and install the newest version. Test to see if your applications still work on the test server before updating production servers.