Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tanium — Vulnerabilities & Security Advisories 49

Browse all 49 CVE security advisories affecting Tanium. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tanium operates as an endpoint management platform, enabling organizations to monitor, secure, and remediate devices across hybrid environments. Its architecture relies on a centralized server and distributed agents to execute queries and commands at scale. Historically, the software has been associated with forty-nine recorded Common Vulnerabilities and Exposures, predominantly involving remote code execution and privilege escalation flaws. These vulnerabilities often stem from improper input validation or insufficient access controls within the management console or agent communications. While no catastrophic breaches directly attributed to Tanium have been widely publicized, the high volume of CVEs highlights significant attack surface risks in its enterprise deployment. Security teams must prioritize patching these known issues, particularly those allowing unauthorized command execution, to maintain the integrity of their managed endpoints and prevent potential lateral movement within internal networks.

Top products by Tanium: Threat Response Discover Interact Tanium Server Tanium Appliance Patch Patch Endpoint Tools TanOS Enforce Deploy Asset Tanium Client Cloud Workloads Trends Enforce Recovery Key Portal end-user-cx Tanium EUSS End-User Notifications Endpoint Tools Tanium Module Server Engage Benchmark Connect Reputation Partner Integration Performance Comply
CVE IDTitleCVSSSeverityPublished
CVE-2026-6408 Tanium addressed an information disclosure vulnerability in Tanium Server. — Tanium ServerCWE-522 2.7 Low2026-04-22
CVE-2026-6392 Tanium addressed an information disclosure vulnerability in Threat Response. — Threat ResponseCWE-200 2.7 Low2026-04-22
CVE-2026-6416 Tanium addressed an uncontrolled resource consumption vulnerability in Interact. — InteractCWE-400 2.7 Low2026-04-22
CVE-2026-2350 Tanium addressed an insertion of sensitive information into log file vulnerability in Interact and TDS. — InteractCWE-532 6.5 Medium2026-02-19
CVE-2026-1292 Tanium addressed an insertion of sensitive information into log file vulnerability in Trends. — TrendsCWE-532 6.5 Medium2026-02-19
CVE-2026-2605 Tanium addressed an insertion of sensitive information into log file vulnerability in TanOS. — TanOSCWE-532 5.3 Medium2026-02-19
CVE-2026-2408 Use-after-free in Cloud Workloads — Cloud WorkloadsCWE-416 4.7 Medium2026-02-19
CVE-2026-2435 ASSET-7706 — AssetCWE-89 6.3 Medium2026-02-19
CVE-2026-1344 Insecure file permissions in Enforce Recovery Key Portal — Enforce Recovery Key PortalCWE-732 6.5 Medium2026-02-17
CVE-2025-15314 Tanium addressed an arbitrary file deletion vulnerability in end-user-cx. — end-user-cxCWE-59 5.5 Medium2026-02-09
CVE-2025-15313 Tanium addressed an arbitrary file deletion vulnerability in Tanium EUSS. — Tanium EUSSCWE-59 5.5 Medium2026-02-09
CVE-2025-15310 Tanium addressed a local privilege escalation vulnerability in Patch Endpoint Tools. — Patch Endpoint ToolsCWE-59 7.8 High2026-02-09
CVE-2025-15318 Tanium addressed an arbitrary file deletion vulnerability in End-User Notifications Endpoint Tools. — End-User Notifications Endpoint ToolsCWE-59 5.1 Medium2026-02-09
CVE-2025-15319 Tanium addressed a local privilege escalation vulnerability in Patch Endpoint Tools. — Patch Endpoint ToolsCWE-59 7.8 High2026-02-09
CVE-2025-15315 Tanium addressed a local privilege escalation vulnerability in Tanium Module Server. — Tanium Module ServerCWE-88 6.7 Medium2026-02-09
CVE-2025-15316 Tanium addressed a local privilege escalation vulnerability in Tanium Server. — Tanium ServerCWE-88 6.7 Medium2026-02-09
CVE-2025-15317 Tanium addressed an uncontrolled resource consumption vulnerability in Tanium Server. — Tanium ServerCWE-770 6.5 Medium2026-02-09
CVE-2025-15320 Tanium addressed a denial of service vulnerability in Tanium Client. — Tanium ClientCWE-605 3.3 Low2026-02-06
CVE-2025-15311 Tanium addressed an unauthorized code execution vulnerability in Tanium Appliance. — Tanium ApplianceCWE-150 7.8 High2026-02-05
CVE-2025-15312 Tanium addressed an improper output sanitization vulnerability in TanOS. — Tanium ApplianceCWE-116 6.6 Medium2026-02-05
CVE-2025-15324 Tanium addressed a local privilege escalation vulnerability in Engage. — EngageCWE-59 6.6 Medium2026-02-05
CVE-2025-15325 Tanium addressed an improper input validation vulnerability in Discover. — DiscoverCWE-89 6.3 Medium2026-02-05
CVE-2025-15327 Tanium addressed an improper access controls vulnerability in Deploy. — DeployCWE-862 4.3 Medium2026-02-05
CVE-2025-15326 Tanium addressed an improper access controls vulnerability in Patch. — PatchCWE-862 4.3 Medium2026-02-05
CVE-2025-15328 Tanium addressed an improper link resolution before file access vulnerability in Enforce. — EnforceCWE-59 5.0 Medium2026-02-05
CVE-2025-15330 Tanium addressed an improper input validation vulnerability in Deploy. — DeployCWE-862 8.8 High2026-02-05
CVE-2025-15331 Tanium addressed an uncontrolled resource consumption vulnerability in Connect. — ConnectCWE-459 4.3 Medium2026-02-05
CVE-2025-15329 Tanium addressed an information disclosure vulnerability in Threat Response. — Threat ResponseCWE-201 4.9 Medium2026-02-05
CVE-2025-15332 Tanium addressed an information disclosure vulnerability in Threat Response. — Threat ResponseCWE-532 4.9 Medium2026-02-05
CVE-2025-15321 Tanium addressed an improper input validation vulnerability in Tanium Appliance. — Tanium ApplianceCWE-426 2.7 Low2026-02-05

This page lists every published CVE security advisory associated with Tanium. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.