Home

Description

Tanium addressed a SQL injection vulnerability in Asset.

PUBLISHED Reserved 2025-12-29 | Published 2026-01-28 | Updated 2026-01-31 | Assigner Tanium




MEDIUM: 6.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Problem types

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Product status

1.28.254 (custom) before 1.28.254
affected

1.32.161 (custom) before 1.32.161
affected

1.33.250 (custom) before 1.33.250
affected

References

security.tanium.com/TAN-2025-035 (TAN-2025-035)

cve.org (CVE-2025-15344)

nvd.nist.gov (CVE-2025-15344)

Download JSON