Tanium End-User Notifications and Endpoint Configuration Toolset Solution Arbitrary File Deletion Vulnerability

An arbitrary file deletion vulnerability has been identified in Tanium's End-User Notifications and Endpoint Configuration Toolset Solution. This vulnerability allows an attacker with privileged access to a system running the Tanium Client to delete or overwrite arbitrary files.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion or overwriting of files on the affected system.

Remediation

Users can upgrade to Tanium End-User Notifications version 1.18.1112 or later. For the Endpoint Configuration Toolset Solution, users should upgrade to Update 16 (v1.40.48) or later for the 2024H1 Release, and to Update 5 (v1.47.16) or later for the 2024H2 Release. Tanium on-prem customers who use ECM should deploy version 2.2.135 or later or 2.9.34 or later to all endpoints. Tanium Cloud customers who use ECM should deploy version 2.11.44 or later or 2.12.43 or later to all endpoints.