Primary

Context

Tanium TanOS Arbitrary File Deletion Vulnerability

Vulnerability

An arbitrary file deletion vulnerability has been identified in TanOS, affecting users authenticated as 'tanadmin'. This vulnerability allows the deletion of arbitrary files on the Tanium Server.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of files on the Tanium Server.

Remediation

Users can upgrade to TanOS Update 16 (v1.8.4.0229) or later for the 2024H2 Release, or TanOS Update 10 (v1.8.5.0262) or later for the 2025H1 Release. For the 2025H2 Release, users should update to TanOS v1.8.6.0124 or later.

Added: Nov 19, 2025, 3:17 AM

Updated: Nov 19, 2025, 3:17 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.8

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.8

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tanium TanOS Arbitrary File Deletion Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating