Risk assessment: Umbraco 7 running ½ a year after End-of-Life !?
Hi! Is it possible to say anything relevant about "how big the risk is" if I keep a Umbraco 7 website running for about 6 months after the official "end of life" in September?
I guess it's all about chance/luck - if a vulnerability will come up after the security support has ended. But perhaps some of you know something about what the odds are..!? :-)
I.e. how often does that actually happen? For example how many (severe) security issues were actually patched in 2022 on Umbraco 7?
Additionally, while we have made new releases for v7 last year, the last significant update was 2 years ago (incidentally, to fix a low risk vulnerability).
Risk assessment: Umbraco 7 running ½ a year after End-of-Life !?
Hi! Is it possible to say anything relevant about "how big the risk is" if I keep a Umbraco 7 website running for about 6 months after the official "end of life" in September?
I guess it's all about chance/luck - if a vulnerability will come up after the security support has ended. But perhaps some of you know something about what the odds are..!? :-) I.e. how often does that actually happen? For example how many (severe) security issues were actually patched in 2022 on Umbraco 7?
THANKS for any input!
As I work at Umbraco, I will tell you don't wait. But make your own assessment.
I only came here to help you with data, looks like the last critical security issue that affected Umbraco 7 was on March 17, 2020:
https://umbraco.com/about-us/trust-center/security-and-umbraco/how-to-get-informed-about-security-advisories/history-of-umbraco-security-advisories/
Additionally, while we have made new releases for v7 last year, the last significant update was 2 years ago (incidentally, to fix a low risk vulnerability).
is working on a reply...