Is SEP, LUA or SEPM vulnerable to OpenSSL vulnerabilities CVE-2025-11187, CVE-2025-15467?
search cancel

Is SEP, LUA or SEPM vulnerable to OpenSSL vulnerabilities CVE-2025-11187, CVE-2025-15467?

book

Article ID: 428017

calendar_today

Updated On:

Products

Endpoint Protection Endpoint Security Endpoint Security Complete

Issue/Introduction

You want to know if Symantec Endpoint Protection (SEP), Live Update Administrator (LUA) and/or Symantec Endpoint Protection Manager (SEPM) are impacted by OpenSSL vulnerabilities: CVE-2025-11187 & CVE-2025-15467 

Resolution

CVE-2025-11187: OpenSSL version 3.6, 3.5 and 3.4 are found vulnerable.

  • 14.3 RU7: No impact, because SEPM uses OpenSSL 3.0.8
  • 14.3 RU9: No impact, because SEPM uses OpenSSL 3.1.5

CVE-2025-15467: OpenSSL version 3.6, 3.5, 3.4, 3.3 and 3.0 are found vulnerable.

  • 14.3 RU7: Potential impact. We are unable to determine with certainty that the SEPM would be impacted, but it may be possible. The mitigation is to upgrade to 14.3 RU9
  • 14.3 RU9: No impact, because SEPM uses OpenSSL 3.1.5
  • SEP client: No impact, because it uses earlier version OpenSSL 1.1.1x
  • Live Update Administrator: No impact, because LUA doesn't use OpenSSL
Powered by Wolken Software