community Alteryx IO Alteryx.com
alteryx Community
Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Close
Free Trial

Alteryx Designer Desktop Discussions

Find answers, ask questions, and share expertise about Alteryx Designer Desktop and Intelligence Suite.

CVE-2022-3358 and CVE-2022-3602

shcooper
5 - Atom
‎07-10-2024 01:54 PM

Hello,

 

our users are on Alteryx Designer 2024.1 version 2024.1.1.49. However, Defender is still picking up openssl CVE-2022-3358 vulnerabilities on the machines.  After digging further, these are the paths being reported 

 

c:\program files\alteryx\bin\miniconda3\envs\designerbasetools_venv\lib\site-packages\fiona.libs\libcrypto-3-x64-a01a35133eabbaa7e6e19da1e5f63695.dll

c:\program files\alteryx\bin\miniconda3\envs\designerbasetools_venv\lib\site-packages\fiona.libs\libssl-3-x64-e88ae0d1a643910f0739148d07de784b.dll

 

Any suggestions?

Labels:
Reply
0 Likes
1 REPLY 1
apathetichell
19 - Altair
‎07-10-2024 04:23 PM

flag this to your rep. expect a patch. downgrade to a prior version of Alteryx which uses a different python version (ie any before 2024.1)

 

or delete the dll files directly and see if anything breaks. I do not see these site-packages on old version of Alteryx like I use.

Reply
0 Likes
Join the weekly challenge takeover
Labels