Tanos
CVE-2025-13225
MEDIUM
Severity by source
AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L
Lifecycle Timeline
2DescriptionCVE.org
Tanium addressed an arbitrary file deletion vulnerability in TanOS.
AnalysisAI
Tanium addressed an arbitrary file deletion vulnerability in TanOS. Rated medium severity (CVSS 5.6), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-552. Tanium addressed an arbitrary file deletion vulnerability in TanOS. Affected products include: Tanium Tanos.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
Tanium addressed an unauthorized code execution vulnerability in Tanium Appliance. [CVSS 7.8 HIGH]
Tanium addressed an improper output sanitization vulnerability in Tanium Appliance. [CVSS 6.6 MEDIUM]
Tanium addressed an insertion of sensitive information into log file vulnerability in TanOS. [CVSS 5.3 MEDIUM]
Tanium addressed an improper certificate validation vulnerability in Tanium Appliance. [CVSS 3.7 LOW]
Tanium addressed an improper input validation vulnerability in Tanium Appliance. [CVSS 2.7 LOW]
Same technique Path Traversal
View allShare
External POC / Exploit Code
Leaving vuln.today