Improper Access Controls in Tanium Server Affects User Security
CVE-2025-15322

4.3MEDIUM

Key Information:

Vendor: Tanium
Status: Tanium Server
Vendor: CVE Published:; 30 January 2026

What is CVE-2025-15322?

An improper access controls vulnerability exists in Tanium Server, allowing unauthorized access to sensitive information and affecting system integrity. This flaw may enable attackers to manipulate or compromise data, posing significant risks to organizations dependent on secure operations.

Affected Version(s)

Tanium Server 7.6.2.0 < 7.6.2.1327

Tanium Server 7.6.4.0 < 7.6.4.2160

Tanium Server 7.7.3.0 < 7.7.3.8231

References

https://security.tanium.com/TAN-2025-028

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 30, 2026
Vulnerability Reserved
Dec 29, 2025

CVE-2025-15322 Data

JSON