Home

Description

Tanium addressed an arbitrary file deletion vulnerability in End-User Notifications Endpoint Tools.

PUBLISHED Reserved 2025-12-29 | Published 2026-02-09 | Updated 2026-02-10 | Assigner Tanium




MEDIUM: 5.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Problem types

Improper Link Resolution Before File Access ('Link Following')

Product status

1.18.0 (custom) before 1.18.10079
affected

10.0.0 (custom) before 10.0.14
affected

10.1.0 (custom) before 10.1.20
affected

References

security.tanium.com/TAN-2025-017 (TAN-2025-017)

cve.org (CVE-2025-15318)

nvd.nist.gov (CVE-2025-15318)

Download JSON