SQL Express 2017 packaged with Symantec Endpoint Protection Manager (SEPM) 14.3 RU1 or later needs to be updated to address a vulnerability or defect.
SEPM 14.3 RU1+
SQL Express 2017
Updating SQL Express to address vulnerabilities or defects is supported. If you need assistance with upgrading the SQL Server please contact Microsoft.
Back up the SEPM database before running the SQL Express update.