Home

Description

Tanium addressed a local privilege escalation vulnerability in Patch Endpoint Tools.

PUBLISHED Reserved 2025-12-29 | Published 2026-02-09 | Updated 2026-02-10 | Assigner Tanium




HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

Improper Link Resolution Before File Access ('Link Following')

Product status

3.17.0 (custom) before 3.17.10195
affected

10.1.0 (custom) before 10.1.33
affected

10.2.0 (custom) before 10.2.22
affected

Credits

Filip Magic reporter

References

security.tanium.com/TAN-2025-001 (TAN-2025-001)

cve.org (CVE-2025-15310)

nvd.nist.gov (CVE-2025-15310)

Download JSON