OpenSSL

We are facing the same situation and it seems that the version of OpenSSL that is used in various apps is hardcoded to the app itself, so even installing the latest version to users does nothing as the app won't try to use the latest version it can see available, but instead will only use the version that is included in the app.

An example of that is PowerBI Desktop install. We have hundreds of issues for this. Also, for OpenSSL 1.1.1 is now EOL, but we still have software that is still using that version even though the version of that software if fully up to date, so the issue is the software vendors as we are reliant of them to make these changes.

Annoyingly, as you say, there is no uninstall for the multiple versions of OpenSSL, unless you have explicitly installed it on a users machine via Winget or similar

https://wingetgui.com/apps/ShiningLight-OpenSSL

If any one does have a solution to this, please let people know.

hbrooks2375 

I found this bit of PowerShell which when run as admin will let you know where and what is installed, run from root of c:

PS C:\> Get-childItem libssl* -Recurse -ErrorAction SilentlyContinue | select versioninfo -ExpandProperty versioninfo | sort ProductVersion,Filename | ft -auto

For me it found mostly windows software without update options.

The ones at issue are 

My best actions so far include

• delete C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\ (we dont use salesforce)
• Update everything (zoom especially)
• Install OpenSSL v 3.2.1 from a trusted repository. (or you could make your own from source)

Now I'm waiting for Microsoft to update the libraries for

• Onedrive
• C:\Windows\System32\DriverStore\FileRepository\iclsclient