TAN-2025-003

Tanium addressed an improper output sanitization vulnerability in TanOS.

Severity: Medium

Base Score: 6.6

Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Impact

This vulnerability could allow an authenticated TanOS user to execute unauthorized code on a Tanium Appliance.

Products Affected

TanOS 1.8.3 prior to version 1.8.3.0146.

TanOS 1.8.4 prior to version 1.8.4.0157.

Available Updates

TanOS version 1.8.3.0146 and later.

TanOS version 1.8.4.0157 and later.

Workaround and Mitigations

None.

Acknowledgements

None.