After adding or removing a MD5 hash in the Symantec Endpoint Detection and Response's (SEDR) Deny List, you notice that it takes a long time for the SEPM fingerprint list to receive the update.
Under certain circumstances an internal task may cause updates from the SEDR appliance to be delayed.
Broadcom Engineering has resolved this issue in EDR version 4.7.0. Please update to EDR 4.7.0 to receive this fix. If you are unable to upgrade to EDR 4.7.0 please use the workaround listed below.
Workaround for EDR versions prior to 4.7.0:
To resolve this issue please install atp-patch2-4.6.8-1.
How to Install patches for SEDR
https://knowledge.broadcom.com/external/article/222060/