starred/rmmagent
1
0
Fork 0
mirror of https://github.com/amidaware/rmmagent.git synced 2026-04-26 14:55:47 +03:00
Code Issues 29 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #70] Embedded Python 3.11.9 in Tactical RMM Agent flagged by CVE-2025-13836 #44

New issue
Closed
opened 2026-03-02 02:12:55 +03:00 by kerem · 1 comment
kerem commented 2026-03-02 02:12:55 +03:00
Owner
Copy link

Originally created by @nbruneau71250 on GitHub (Jan 9, 2026).
Original GitHub issue: https://github.com/amidaware/rmmagent/issues/70

Hello,

While running vulnerability scans with Wazuh on Windows endpoints, we consistently get alerts for CVE-2025-13836 related to an embedded Python interpreter shipped with the Tactical RMM agent.

Details:

  • Path: C:\Program Files\TacticalAgent\python\py3.11.9_amd64\python.exe
  • Embedded Python version: 3.11.9
  • Scanner: Wazuh (OSSEC-based), signature-based detection

The system-wide Python has already been fully removed, and the alert clearly points to the Python bundled with the Tactical RMM agent.

It appears that Python 3.11.9 is affected by CVE-2025-13836, and updating or rebuilding the agent with a patched Python version would resolve the issue.

Could you please confirm:

  • Whether this embedded Python is expected to be updated in a future agent release
  • Or if there is already a version of the agent that ships with a patched Python runtime

This is not a critical breakage, but it does generate persistent security alerts in enterprise environments.

Thanks for your work on Tactical RMM.

Originally created by @nbruneau71250 on GitHub (Jan 9, 2026). Original GitHub issue: https://github.com/amidaware/rmmagent/issues/70 Hello, While running vulnerability scans with Wazuh on Windows endpoints, we consistently get alerts for CVE-2025-13836 related to an embedded Python interpreter shipped with the Tactical RMM agent. Details: - Path: C:\Program Files\TacticalAgent\python\py3.11.9_amd64\python.exe - Embedded Python version: 3.11.9 - Scanner: Wazuh (OSSEC-based), signature-based detection The system-wide Python has already been fully removed, and the alert clearly points to the Python bundled with the Tactical RMM agent. It appears that Python 3.11.9 is affected by CVE-2025-13836, and updating or rebuilding the agent with a patched Python version would resolve the issue. Could you please confirm: - Whether this embedded Python is expected to be updated in a future agent release - Or if there is already a version of the agent that ships with a patched Python runtime This is not a critical breakage, but it does generate persistent security alerts in enterprise environments. Thanks for your work on Tactical RMM.
kerem closed this issue 2026-03-02 02:12:55 +03:00
kerem commented 2026-03-02 02:12:55 +03:00
Author
Owner
Copy link

@wh1te909 commented on GitHub (Jan 9, 2026):

it will be updated at a later time, you can safely ignore this, as it’s not relevant to how the agent operates.

<!-- gh-comment-id:3730268309 --> @wh1te909 commented on GitHub (Jan 9, 2026): it will be updated at a later time, you can safely ignore this, as it’s not relevant to how the agent operates.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
develop
master
v2.10.0
v2.9.1
v2.9.0
v2.8.0
v2.7.0
v2.6.2
v2.6.1
v2.6.0
v2.5.0
v2.4.11
v2.4.10
v2.4.9
v2.4.8
v2.4.7
v2.4.6
v2.4.5
v2.4.4
v2.4.3
v2.4.2
v2.4.1
v2.4.0
v2.3.1
v2.3.0
v2.2.1
v2.2.0
v2.1.2
v2.1.1
v2.1.0
v2.0.4
v2.0.3
v2.0.2
v2.0.1
v2.0.0
Labels
Clear labels   
bug

   
bug

   
enhancement

   
fixed

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
wontfix
No labels
bug
bug
enhancement
fixed
pull-request
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/rmmagent#44
No description provided.