Symantec has released an update to address an issue in the Symantec Encryption Management Server product.
Symantec Encryption Management Server (SEMS)
CVE
|
Affected Version(s)
|
Remediation
CVE-2018-5243
|
Prior to 3.4.2 MP1
|
Upgrade to 3.4.2 MP1
CVE-2018-5243
Severity/CVSSv3:
|
Medium / 5.3 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
References:
Impact:
|
Security Focus: BID 105062 / NVD: CVE-2018-5243
Denial of service
Description:
|
A denial of service (DoS) attack is a type of attack whereby the perpetrator attempts to make a particular machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a specific host within a network.
The aforementioned issue was validated by product team engineers. A Symantec Encryption Management Server update, version 3.4.2 MP1, has been made available. Note that the latest product releases are available to customers through normal support channels. At this time, Symantec is not aware of any exploitations or adverse customer impact from this issue.
Symantec recommends the following measures to reduce risk of attack: