CVE-2025-15314

Summary

Tanium addressed an arbitrary file deletion vulnerability in end-user-cx.

Affected Software

VendorProductVersion RangeStatus
Taniumend-user-cx1.4.0 < 1.4.1175affected
Taniumend-user-cx1.6.0 < 1.6.926affected
Taniumend-user-cx1.8.0 < 1.8.21affected

Weaknesses

  • CWE-59: Improper Link Resolution Before File Access ('Link Following')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References