By Tuesday morning (n-day 2), Symantec released a registry-based workaround to disable the vulnerable driver feature without breaking core AV scans. Maya deployed it via group policy in 15 minutes. Evaluation: Excellent. Many vendors only give workarounds days later.

Maya ran a report: Did Symantec’s own product introduce any new n-days during the patch? No. Did they publicly document the root cause? Yes, in a detailed blog. Did they offer a rollback-safe mechanism? Yes.

Symantec’s older DLP (Data Loss Prevention) agent, version 14.x, had not received the patch yet. Support said “end-of-life next quarter.” Maya realized that while Symantec was strong on current n-day response, their n-day coverage for legacy products was weak.