Home

Description

Tanium addressed a local privilege escalation vulnerability in Patch Endpoint Tools.

PUBLISHED Reserved 2025-12-29 | Published 2026-02-09 | Updated 2026-02-10 | Assigner Tanium




HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

Improper Link Resolution Before File Access ('Link Following')

Product status

3.17.0 (custom) before 3.17.10207
affected

10.1.0 (custom) before 10.1.50
affected

10.7.0 (custom) before 10.7.25
affected

10.9.0 (custom) before 10.9.31
affected

10.11.0 (custom) before 10.11.27
affected

Credits

Owen Jeanes reporter

References

security.tanium.com/TAN-2025-021 (TAN-2025-021)

cve.org (CVE-2025-15319)

nvd.nist.gov (CVE-2025-15319)

Download JSON