.svg?width=185&quality=80&auto=webp&format=auto&cache=true&immutable=true&cache-control=max-age%3D31536000 "Home"){kind=logo}
.svg?width=13&quality=80&auto=webp&format=auto&cache=true&immutable=true&cache-control=max-age%3D31536000 "Top Navigation - Sign in - Icon")
High
Resolved LPE vulnerability in Taegis Endpoint Agent (Linux) (CVE-2024-13861)
CVE(N)
CVE-2024-13861
PRODUIT(S)
Taegis Endpoint Agent
Mis à jour
2025 Apr 11
Version de l'article
1
Publié
2025 Apr 11
ID de publication
sophos-sa-20250411-taegis-agent-lpe
Solution alternative
No
Overview
Secureworks – a Sophos company – has fixed a local privilege escalation vulnerability in the Debian package component of Taegis Endpoint Agent (Linux), allowing arbitrary code execution. Redhat-based Linux systems using RPM packages were not affected.
There is no action required for customers using the default updating policy, as updates are installed automatically by default.
Customers opting out of automatic updates are required to upgrade to receive this fix. See below for details.
Applies to the following product(s) and version(s)
Taegis Endpoint Agent (Linux) prior version 1.3.10
Remediation
- Ensure you are running the latest version of Taegis Endpoint Agent
- Fix included in Taegis Endpoint Agent (Linux) version 1.3.10 on 26 June 2024
- Users of older versions of Taegis Endpoint Agent (Linux) are required to upgrade to receive the latest protections, and this fix
Related information
Sophos Responsible Disclosure Policy
To learn about Sophos security vulnerability disclosure policies and publications, see the Responsible Disclosure Policy.