You are inquiring to see if the Symantec Endpoint Protection Manager (SEPM) is affected by the PHP vulnerability reported in CVE-2024-11235

Symantec Endpoint Protection Manager

SEPM is NOT vulnerable to this CVE.

The assessment is based on the fact that an attacker would need to be able to manipulate a component that can trigger an exception that leads to the use-after-free and ultimately result in undefined behavior. Since none of the PHP components inside SEPM is controlled by an external entity, SEPM is not vulnerable to this CVE.