Tanium Threat Response up to 4.5.265/4.6.535/4.9.323 default permission

Summaryinfo

A vulnerability classified as critical has been found in Tanium Threat Response up to 4.5.265/4.6.535/4.9.323. This vulnerability affects unknown code. The manipulation leads to default permission. This vulnerability is uniquely identified as CVE-2025-15335. The attack is possible to be carried out remotely. No exploit exists. It is recommended to upgrade the affected component.

Detailsinfo

A vulnerability, which was classified as critical, has been found in Tanium Threat Response up to 4.5.265/4.6.535/4.9.323. This issue affects some unknown processing. The manipulation with an unknown input leads to a default permission vulnerability. Using CWE to declare the problem leads to CWE-276. During installation, installed file permissions are set to allow anyone to modify those files. Impacted is confidentiality. The summary by CVE is:

Tanium addressed an information disclosure vulnerability in Threat Response.

It is possible to read the advisory at security.tanium.com. The identification of this vulnerability is CVE-2025-15335 since 12/30/2025. The exploitation is known to be easy. The attack may be initiated remotely. The technical details are unknown and an exploit is not publicly available. The attack technique deployed by this issue is T1222 according to MITRE ATT&CK.

Upgrading to version 4.5.266, 4.6.536 or 4.9.324 eliminates this vulnerability.

The vulnerability is also documented in the vulnerability database at EUVD (EUVD-2025-206843). Be aware that VulDB is the high quality source for vulnerability data.

Productinfo

Vendor

• Tanium

Name

• Threat Response

Version

• 4.5.265
• 4.6.535
• 4.9.323

CPE 2.3info

• 🔒
• 🔒
• 🔒

CPE 2.2info

• 🔒
• 🔒
• 🔒

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Be aware that VulDB is the high quality source for vulnerability data.

Discussion