Is Endpoint Protection Agent affected by OpenSSL vulnerability CVE-2022-3786 or CVE-2022-3602?
search cancel

Is Endpoint Protection Agent affected by OpenSSL vulnerability CVE-2022-3786 or CVE-2022-3602?

book

Article ID: 253883

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

OpenSSL announced that they are releasing a fix in 3.0.7 to address vulnerabilities CVE-2022-3786 and CVE-2022-3602. Is the Symantec Endpoint Protection (SEP) Agent affected?

Environment

Symantec Endpoint Protection (Windows) Agent
Symantec Endpoint Protection (Linux) Agent
Symantec Endpoint Protection (Mac) Agent

Resolution

Symantec Endpoint Protection (Windows) Agent

  • Not affected. 

Symantec Endpoint Protection (Linux) Agent

  • Affected - 14.3 RU4 | 14.3 RU5 only. Upgrade to 14.3 RU5 b3075* or greater. 

Symantec Endpoint Protection (Mac) Agent

  • Not affected.

Additional Information

*Linux build 14.3.3075 is installed when a Linux build 3068 installer runs and and downloads the latest package

日本語