Resolved LPE vulnerability in Taegis Endpoint Agent (Linux) (CVE-2024-13861)

Torna alla panoramica degli advisory di sicurezza
High
CVE
CVE-2024-13861
Updated:
Prodotto/i
Taegis Endpoint Agent
ID di pubblicazione sophos-sa-20250411-taegis-agent-lpe
Versione dell'articolo 1
Prima pubblicazione
Soluzione alternativa No

Overview

Secureworks – a Sophos company – has fixed a local privilege escalation vulnerability in the Debian package component of Taegis Endpoint Agent (Linux), allowing arbitrary code execution. Redhat-based Linux systems using RPM packages were not affected.

There is no action required for customers using the default updating policy, as updates are installed automatically by default.

Customers opting out of automatic updates are required to upgrade to receive this fix. See below for details.

Applies to the following product(s) and version(s)

Taegis Endpoint Agent (Linux) prior version 1.3.10

Remediation

  • Ensure you are running the latest version of Taegis Endpoint Agent
  • Fix included in Taegis Endpoint Agent (Linux) version 1.3.10 on 26 June 2024
  • Users of older versions of Taegis Endpoint Agent (Linux) are required to upgrade to receive the latest protections, and this fix

Related information

Sophos Responsible Disclosure Policy

To learn about Sophos security vulnerability disclosure policies and publications, see the Responsible Disclosure Policy.