.png?width=180&height=32&name=NW%20Logo%20(2).png){kind=small}
RSA, The Security Division of EMC, announces the release of Security Analytics 10.3.5 Security Patch
Tags: Product Advisories, RSA NetWitness Platform
Advisory Type
Announcement
Advisory Content
Dear RSA Security Analytics Customer,
Summary:
RSA, The Security Division of EMC, announces the release of Security Analytics 10.3.5 Security Patch. This release is a patch that addresses several vulnerabilities and includes 2 fixes for Security Analytics 10.3.5.
- Remediates the vulnerability known as POODLE (Padding Oracle On Downgraded Legacy Encryption).
- For further details on vulnerability: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
- Java vulnerabilities
- Updates RSA SSL certificate for connecting to smcupdate.emc.com.
- Addresses issue causing services to appear offline in Security Analytics user interface.
Please refer to the Release Notes for further details on fixes referenced above.
Affected Products:
RSA Security Analytics 10.3.5
Recommendation:
Customers running Security Analytics 10.3.5 should install this patch immediately to remediate these known vulnerabilities.