Improper Input Validation in Tanium Discover Product
CVE-2025-15325

6.3MEDIUM

Key Information:

Vendor: Tanium
Status: Discover
Vendor: CVE Published:; 5 February 2026

What is CVE-2025-15325?

An improper input validation flaw has been identified in Tanium's Discover product, potentially allowing unauthorized actions to be executed within the application. This could lead to significant security risks if not properly addressed. Users are encouraged to review their systems and apply the latest updates provided by Tanium to mitigate any potential threats.

Affected Version(s)

Discover 4.10.0 < 4.10.90

References

https://security.tanium.com/TAN-2025-005

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 5, 2026
Vulnerability Reserved
Dec 29, 2025

CVE-2025-15325 Data

JSON