OpenSSL version no longer supported

The version of OpenSSL we have stopped receiving support in 2020, yet yum tells us we have the most current version available. It is kicking numerous security errors on a Pen Test. Running CentOs 7. How can we update to a more current version of OpenSSL without breaking everything?

Just an update - I've installed OpenSSL 3.3.1 on the server, and in the terminal it shows the version as OpenSSL 3.3.1 4 Jun 2024 (Library: OpenSSL 3.3.1 4 Jun 2024).

Yet, in CWP is is still showing as 1.0.2. I think there may be a setting in Apache SSL that needs fixing but am not sure. Can anyone point me in the right directions? Thanks in advance.

Upgrade from CentOS 7...

Everyone has know EOL for that OS was coming...

Any recommendations? I'm concerned about the lack of potential exit from Stream. Rocky and Alma seem to be an option but may have CWP issues. Interested in any thoughts...

AlmaLinux is the new Recommended version to install CWP onto.

CentOS Stream is a beta OS, and it's recommended due to it's instability.

We use AlmaLinux 8.x without issues, and now have 3 systems with 9.x running with CWP.

AlmaLinux 8 for now, AlmaLinux 9 when CWP comes out of beta for EL9 releases.

Thank you! We will give AlmaLinux a try. Appreciate the feedback.