Is Endpoint Protection Agent affected by OpenSSL vulnerability CVE-2022-3786 or CVE-2022-3602?

search cancel

Is Endpoint Protection Agent affected by OpenSSL vulnerability CVE-2022-3786 or CVE-2022-3602?

book

Article ID: 253883

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

OpenSSL announced that they are releasing a fix in 3.0.7 to address vulnerabilities CVE-2022-3786 and CVE-2022-3602. Is the Symantec Endpoint Protection (SEP) Agent affected?

Environment

Symantec Endpoint Protection (Windows) Agent
Symantec Endpoint Protection (Linux) Agent
Symantec Endpoint Protection (Mac) Agent

Resolution

Symantec Endpoint Protection (Windows) Agent

Not affected.

Symantec Endpoint Protection (Linux) Agent

Affected - 14.3 RU4 | 14.3 RU5 only. Upgrade to 14.3 RU5 b3075* or greater.

Symantec Endpoint Protection (Mac) Agent

Not affected.

Additional Information

*Linux build 14.3.3075 is installed when a Linux build 3068 installer runs and and downloads the latest package

日本語

Feedback

thumb_up Yes

thumb_down No