Details related to the Flash End of Life (EOL) for the ESM 10.4 EOL extension:
Adobe Flash reached full EOL on December 31, 2020. As we continue to migrate the ESM UI from Flash to HTML5, all supported versions of ESM use Flash beyond the Flash EOL date.
We understand that under current circumstances, it might be difficult for some customers to fully achieve migration to a supported ESM version by the designated EOL date.
To help address these concerns, we’re extending limited support for ESM 10.4 to
August 31, 2021, originally scheduled for December 31, 2020.
NOTE: Because not all customers can fully migrate to a recent and supported version before the Flash EOL, we’re taking other steps as outlined in the Action Plan below.
We’ve released an update for later versions of ESM to mitigate the impact of the Flash EOL. The update consists of a secured, containerized administrative utility, which is needed to access the remaining Flash-based parts of the ESM UI. The new utility is supported in Windows, Mac, and Linux clients.
You can still access all existing HTML5 parts of the UI using a standard browser, without the need for browser-based Flash. We’re rolling out these updates as they become available, beginning in September with an update for 11.3.2.
Releases containing the fix:
| Product Version |
Action Plan / Mitigation |
Update Released |
| 11.4.x and later |
Fix included in this release.
|
11.4.1 - Released December 8, 2020 |
|
11.3.2
11.3.0
10.4.0
|
Apply 11.3.2 Hotfix 2 or Higher.
Apply 11.3.0 Hotfix 15 or Higher.
Apply 10.4.0 Hotfix 13 or Higher.
|
11.3.2 - Released September 21, 2020
11.3.0 - Released September 21, 2020
10.4.0 - Released September 21, 2020
|
11.3.1
11.2.x
11.1.x
11.0.x |
Upgrade to 11.3.2 ASAP and apply Hotfix.
|
N/A1
|
| 10.3.x or earlier |
Option 1 - Upgrade to 10.4.0 ASAP and apply Hotfix.
Option 2 - Upgrade to 11.3.2 ASAP and apply Hotfix.
|
N/A1 |
|
1 Updates won’t be released for these versions. You must upgrade to a supported version that supports the administrative utility.
The SIEM upgrade files and SIEM Hotfix are now available from the Product Downloads site, behind appropriate grant numbers.
NOTE: For information about the ESM Administrator thin client, see
KB93413 - SIEM Flash EOL and ESM Administrator Thin-Client FAQs.
See the following links for information about upgrading to 11.5.x or 10.4.
After December 31, 2020, we won’t support direct access to the remaining Flash parts of the ESM UI unless running one of the supported releases noted above.
We strongly recommend that you upgrade to a supported version that provides a secure method for accessing the remaining Flash parts of the ESM UI.
If you choose to maintain your own local install of Flash and a browser to support it, the product continues to function as it does today. We don't recommend this course of action, because of the potential security implications that might occur after December 31, 2020.
IMPORTANT: We’re committed to helping our customers in this upgrade process. To let us help you develop and execute a plan to upgrade, contact your Sales Engineer or designated Support contact.
IMPORTANT: Distribution of Enterprise Security Manager in mainland China ceased as of September 15, 2020. The reason is potential vulnerabilities from independent software. The independent software is needed for distribution within mainland China for the next Enterprise Security Manager release. For more information, see KB93376 - Change in availability of Enterprise Security Manager (ESM) in mainland China.
