Skip to content

TAN-2025-010

Tanium addressed an arbitrary file deletion vulnerability in Endpoint Configuration Toolset Solution.

Severity: Medium

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Impact

This vulnerability could allow an attacker with access to a system running the Tanium Client to delete files or folders they should not have access to.

Products Affected

7.4 and 7.5 Release:

  • End User Notifications prior to version 1.18.1105

2024H1 Release:

  • Endpoint Configuration Toolset Solution prior to Update 12 (v1.40.42)

2024H2 Release:

  • Endpoint Configuration Toolset Solution prior to Update 2 (v1.47.10)

Vulnerable tool versions:

  • end-user-cx 1.4 prior to 1.4.1175

  • end-user-cx 1.6 prior to 1.6.926

  • end-user-cx 1.8 prior to 1.8.21

  • Tanium EUSS 1.17 prior to 1.17.41

  • Tanium EUSS 1.18 prior to 1.18.28

Available Updates

7.4 and 7.5 Release:

  • End User Notifications version 1.18.1105 and later

2024H1 Release:

  • Update 12 (Endpoint Configuration Toolset Solution v1.40.42) and later

2024H2 Release:

  • Update 2 (Endpoint Configuration Toolset Solution v1.47.10) and later

In addition to upgrading all impacted software, Tanium on-prem customers who use ECM should use Change Management in Endpoint Configuration to deploy one of the following Manifests to all endpoints:

  • 2.2.122 or later

  • 2.9.24 or later

Tanium Cloud customers who use ECM should use Change Management in Endpoint Configuration to deploy one of the following Manifests to all endpoints:

  • 2.10.27 or later

  • 2.11.39 or later

Workaround and Mitigations

None.

Acknowledgements

None.