It's been a few years since I've had to look at this, but back then the major impediment to upgrading to a newer release was that 3.0 didn't have a FIPS 140 certified version. That should have been addressed by now.
OpenSSL 1.1.1 reaches end of life for all but the well-heeled
OpenSSL 1.1.1 has reached the end of its life, making a move to a later version essential for all, bar those with extremely deep pockets. OpenSSL 1.1.1 was originally released in 2018 as a Long Term Support (LTS) version of the open-source secure communication library. At the time, the team behind it declared that it would be …