Severity: Critical

Description: A critical security vulnerability (CVE-2025-15467, CVSS 9.8) has been identified in the OpenSSL library, and it impacts all supported versions of Progress DataDirect products that leverage OpenSSL for secure communication. The DataDirect ODBC drivers are shipped with the following:

• SAS/ACCESS^® Interface to Amazon Redshift
• SAS/ACCESS^® Interface to Greenplum
• SAS/ACCESS^® Interface to Microsoft SQL Server

Potential Impact: The application crashes (Denial of Service) or a potential remote code execution occurs, depending on platform mitigations. See the CVE record for additional information.