Yes, Device Control Plus is vulnerable to CVE-2020-1968 vulnerability. Read the document fully for further details.
The Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman (DH) based ciphersuite. In such a case this would result in the attacker being able to eavesdrop on all encrypted communications sent over that TLS connection. The attack can only be exploited if an implementation re-uses a DH secret across multiple TLS connections and affects only OpenSSL 1.0.2-OpenSLL 1.0.2v.
CVE-2020-1968 will affect Device Control Plus as Device Control Plus supports OpenSSL 1.0.2 which is affected by this CVE.
As Device Control Plus is vulnerable to this CVE, we'll be upgrading to the latest OpenSSL version during our regular third-party components upgrade cycle.