Home

Description

Tanium addressed a local privilege escalation vulnerability in Tanium Module Server.

PUBLISHED Reserved 2025-12-29 | Published 2026-02-09 | Updated 2026-02-10 | Assigner Tanium




MEDIUM: 6.7CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Problem types

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Product status

7.5.6.0 (custom) before 7.5.6.1161
affected

7.4.6.0 (custom) before 7.4.6.1151
affected

7.6.2.0 (custom) before 7.6.2.1293
affected

7.6.4.0 (custom) before 7.6.4.2114
affected

References

security.tanium.com/TAN-2025-011 (TAN-2025-011)

cve.org (CVE-2025-15315)

nvd.nist.gov (CVE-2025-15315)

Download JSON