Improper Output Sanitization in Tanium Appliance by Tanium
CVE-2025-15312

6.6MEDIUM

Key Information:

Vendor: Tanium
Status: Tanium Appliance
Vendor: CVE Published:; 5 February 2026

What is CVE-2025-15312?

An improper output sanitization vulnerability exists in the Tanium Appliance, which could allow an attacker to manipulate the output data returned to users. This security flaw may lead to potential exposure of sensitive information or unauthorized actions, emphasizing the importance of ensuring that the output is properly sanitized before being presented to users. For further details, refer to the advisory TAN-2025-003.

Affected Version(s)

Tanium Appliance 1.8.3.0 < 1.8.3.0146

Tanium Appliance 1.8.4.0 < 1.8.4.0157

References

https://security.tanium.com/TAN-2025-003

CVSS V3.1

Score:

6.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 5, 2026
Vulnerability Reserved
Dec 29, 2025

CVE-2025-15312 Data

JSON