You are inquiring to see if the Symantec Endpoint Protection Manager (SEPM) and LiveUpdate Administrator (LUA) is affected by the PHP vulnerability reported in CVE-2024-11235

SEPM and LUA is NOT vulnerable to this CVE.

The assessment is based on the fact that an attacker would need to be able to manipulate a component that can trigger an exception that leads to the use-after-free and ultimately result in undefined behavior. Since none of the PHP components inside SEPM is controlled by an external entity, SEPM is not vulnerable to this CVE.
LUA does not use the impacted component.