Volerion logoVolerion
Volerion logoVolerion

Tanium Partner Integration Incorrect Default Permissions Vulnerability

Vulnerability

A vulnerability allowing incorrect default permissions has been identified in Tanium's Partner Integration component. This issue affects several versions prior to the 2025H1 release, specifically those before Update 5. The vulnerability could enable an authenticated Tanium user with certain service account permissions to read or write all platform content.

Impact

Exploitation of this vulnerability could allow an authenticated user with specific service account permissions to read and write all platform content, potentially leading to unauthorized data access or modification.

Remediation

Users can update to Tanium Partner Integration version 1.3.40 or later to address this vulnerability.

Added: Feb 5, 2026, 7:25 PM
Updated: Feb 5, 2026, 9:45 PM

Vulnerability Rating

Custom Algorithm
spread
6.8
impact
5.0
exploitability
4.5
remediation
7.7
relevance
2.5
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.