Key Vulnerability Information CVE ID: CVE-2026-1224 Advisory ID: TAN-2026-001 Date: January 24, 2026 Severity: Medium Base Score: 4.9 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Impact This vulnerability allows an authenticated Tanium user with the Discover Locations Write permission to perform a denial of service attack against the Tanium Module Server. Products Affected 2024H2 Release: - Discover prior to Update 20 (v4.10 to v4.10.134) - Discover prior to Update 13 (v4.10 to v4.10.134) - Discover prior to Update 3 (v4.15 to v4.15.130) Available Updates 2024H2 Release: - Update 20 (Discover v4.10.134) and later - Update 13 (Discover v4.10.134) and later - Update 3 (Discover v4.15.130) and later Workaround and Mitigations None. Acknowledgements None.