Today (10th April 2014) the world woke-up to the news that OpenSSL has a serious security vulnerability, with a catchy name "Heartbleed"
I'm sure you'd like to know Symantec's official view on the Enterprise Vault family of products.
You can read our offical response here: http://www.symantec.com/docs/TECH216583
To put your mind at rest, all currently released versions are unaffected by this vulnerability.
