


the Encryption Management Server uses customized packages and is a customized Linux operating system itself based on CentOS. Vulnerability scanners typically scan for specific package versions and are not usually attempting to exploit any actual vulnerability. Where Symantec Enterprise Division Development does not list the CVEs as a fixed package, but the CVE has been reviewed, an explanation is given on what the status of the CVE may be as it applies to the Encryption Management Server.

As such, with each release new security updates may be applied and is actively vetted by rigorous security processes.
#APACHE IPTRACE SERIES#
This list may not contain all the CVEs that have been reported, this list contains only those CVEs that have been reviewed by Symantec Enterprise Division Development and resolved, or that are known with reasonable workarounds.Įach release of Symantec Encryption Management Server goes through a series of security reviews and security scans to ensure it is ready to be placed in public-facing deployments. This article is designed to provide Administrators of Symantec Encryption Management Server with a listing of reported CVEs that Symantec Enterprise Division Development and Security teams have reviewed and resolved in the current release of the Encryption Management Server.
