CVE-2026-6392— Tanium addressed an information disclosure vulnerability in Threat Response.
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-6392
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tanium addressed an information disclosure vulnerability in Threat Response.
Source: NVD (National Vulnerability Database)
Vulnerability Description
Tanium addressed an information disclosure vulnerability in Threat Response.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
Tanium Threat Response 信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Tanium Threat Response是美国Tanium公司的一个端点检测与响应的核心安全模块。 Tanium Threat Response存在信息泄露漏洞,该漏洞源于允许具有威胁响应配置-读取权限的经过身份验证的Tanium用户获得对他们不应该访问的数据的只读访问权限。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Tanium | Threat Response | 4.6.0 ~ 4.6.577 | - |
II. Public POCs for CVE-2026-6392
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-6392
请登录查看更多情报信息。
Same Patch Batch · Tanium · 2026-04-22 · 3 CVEs total
| CVE-2026-6408 | 2.7 LOW | Tanium addressed an information disclosure vulnerability in Tanium Server. |
| CVE-2026-6416 | 2.7 LOW | Tanium addressed an uncontrolled resource consumption vulnerability in Interact. |
IV. Related Vulnerabilities
Same product: Threat Response
- CVE-2025-15329
Tanium addressed an information disclosure vulnerability in - CVE-2025-15332
Tanium addressed an information disclosure vulnerability in - CVE-2025-15333
Tanium addressed an information disclosure vulnerability in - CVE-2025-15334
Tanium addressed an information disclosure vulnerability in - CVE-2025-15335
Tanium addressed an information disclosure vulnerability in
Same vendor: Tanium
- CVE-2026-6408
Tanium addressed an information disclosure vulnerability in - CVE-2026-6416
Tanium addressed an uncontrolled resource consumption vulner - CVE-2026-2350
Tanium addressed an insertion of sensitive information into - CVE-2026-1292
Tanium addressed an insertion of sensitive information into - CVE-2026-2605
Tanium addressed an insertion of sensitive information into
Same weakness: CWE-200
- CVE-2026-42333
quarkus-openapi-generator has overly broad path-parameter ma - CVE-2026-8198
Activity Logs, User Activity Tracking, Multisite Activity Lo - CVE-2026-42456
AnythingLLM: Cross-User TTS Audio Disclosure via Chat ID (ID - CVE-2026-41520
Cillium exposes sensitive information included in the cilium - CVE-2026-25199
Apache CloudStack: Proxmox Extension Allows Unauthorized Cro
V. Comments for CVE-2026-6392
No comments yet