<!-- ?xml version=""1.0"" encoding=""UTF-8"" standalone=""no""? -->
Dear RSA Security Analytics Customer,
RSA, The Security Division of EMC, announces the release of Security Analytics 10.3.5 Security Patch. This release is a patch that addresses several vulnerabilities and includes 2 fixes for Security Analytics 10.3.5.
- Remediates the vulnerability known as POODLE (Padding Oracle On Downgraded Legacy Encryption).
- For further details on vulnerability: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
- Java vulnerabilities
- Updates RSA SSL certificate for connecting to smcupdate.emc.com.
- Addresses issue causing services to appear offline in Security Analytics user interface.
Please refer to the Release Notes for further details on fixes referenced above.
RSA Security Analytics 10.3.5
Customers running Security Analytics 10.3.5 should install this patch immediately to remediate these known vulnerabilities.