Primary

Context

Tanium Server Improper Access Controls Vulnerability Allowing Unauthorized Data Access

Vulnerability

Patched

An improper access controls vulnerability has been identified in Tanium Server, affecting several versions prior to specific update releases. This vulnerability could allow an authenticated user with the 'Ask Dynamic Questions' permission to gain unauthorized read-only access to restricted data.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive data for certain authenticated users.

Remediation

Users can upgrade to Tanium Server v7.6.2.1327, v7.6.4.2160, or v7.7.3.8231 to address this vulnerability.

Added: Jan 30, 2026, 1:19 AM

Updated: Jan 30, 2026, 1:19 AM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

4.9

remediation

7.7

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

4.9

remediation

7.7

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tanium Server Improper Access Controls Vulnerability Allowing Unauthorized Data Access

Vulnerability

Impact

Remediation

Affected Products

Tanium Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating