Home

Description

Tanium addressed an arbitrary file deletion vulnerability in end-user-cx.

PUBLISHED Reserved 2025-12-29 | Published 2026-02-09 | Updated 2026-02-10 | Assigner Tanium




MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Problem types

Improper Link Resolution Before File Access ('Link Following')

Product status

1.4.0 (custom) before 1.4.1175
affected

1.6.0 (custom) before 1.6.926
affected

1.8.0 (custom) before 1.8.21
affected

References

security.tanium.com/TAN-2025-010 (TAN-2025-010)

cve.org (CVE-2025-15314)

nvd.nist.gov (CVE-2025-15314)

Download JSON