Background:
The Exploit prevention component sends information about protected applications to the management back-end. This information is used to build the policy that is applied on all endpoints and contains information about the applications used in the environment such as normalized paths, executable name, and if the applications are monitored or excluded.
In version 3.6.9 when the application path contains multi-byte utf8 characters, the policy verification fails and endpoints report policy non-compliance.
NOTE: his is a reporting issue only, the policy is applied and the endpoints are fully protected.
Remediation:
For Central customers - This issue is resolved with 3.6.10.611
Update:
For Sophos Enterprise Console customers
The fix will be released with the Intercept X version scheduled for April 2018.
Please follow our Knowledgebase Article for details & reasons for the updated release date, as well as for any further updates on the issue.
Thanks,
Karlos
This thread was automatically locked due to age.