Primary

Context

Tanium Reputation Improper Access Controls Vulnerability Allowing Unauthorized Data Access

Vulnerability

An improper access controls vulnerability has been identified in Tanium's Reputation product. This vulnerability affects several versions prior to specific update releases in 2024 and 2025. The issue could allow an authenticated Tanium user with the 'Reputation Read' permission to gain unauthorized read and write access to sensitive data.

Impact

Exploitation of this vulnerability could lead to unauthorized access to read and write data in the Tanium Reputation application, allowing users to access information they should not be privy to and potentially modify it.

Remediation

Users can update to Tanium Reputation version 6.3.227 or later, version 6.5.50 or later, or version 6.6.72 or later, depending on their current release.

Added: Feb 5, 2026, 7:23 PM

Updated: Feb 5, 2026, 8:51 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tanium Reputation Improper Access Controls Vulnerability Allowing Unauthorized Data Access

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating