Resolved LPE vulnerability in Taegis Endpoint Agent (Linux) (CVE-2024-13861)

返回安全公告概览
High
CVE(s)
CVE-2024-13861
Updated:
产品
Taegis Endpoint Agent
发布 ID sophos-sa-20250411-taegis-agent-lpe
文章版本 1
First Published
解决方法 No

Overview

Secureworks – a Sophos company – has fixed a local privilege escalation vulnerability in the Debian package component of Taegis Endpoint Agent (Linux), allowing arbitrary code execution. Redhat-based Linux systems using RPM packages were not affected.

There is no action required for customers using the default updating policy, as updates are installed automatically by default.

Customers opting out of automatic updates are required to upgrade to receive this fix. See below for details.

Applies to the following product(s) and version(s)

Taegis Endpoint Agent (Linux) prior version 1.3.10

Remediation

  • Ensure you are running the latest version of Taegis Endpoint Agent
  • Fix included in Taegis Endpoint Agent (Linux) version 1.3.10 on 26 June 2024
  • Users of older versions of Taegis Endpoint Agent (Linux) are required to upgrade to receive the latest protections, and this fix

Related information

Sophos Responsible Disclosure Policy

To learn about Sophos security vulnerability disclosure policies and publications, see the Responsible Disclosure Policy.