Information Disclosure Vulnerability in Tanium's Threat Response
CVE-2025-15334

4.3MEDIUM

Key Information:

Vendor: Tanium
Status: Threat Response
Vendor: CVE Published:; 5 February 2026

What is CVE-2025-15334?

An information disclosure vulnerability was identified in Tanium's Threat Response product, potentially allowing unauthorized access to sensitive information. This flaw can be exploited in a manner that exposes critical internal data, posing significant risks for users and organizations relying on this software for threat management and incident response. It is imperative for users to ensure they are using the updated version of Tanium Threat Response to mitigate potential security risks.

Affected Version(s)

Threat Response 4.5.0 < 4.5.266

Threat Response 4.6.0 < 4.6.536

Threat Response 4.9.0 < 4.9.324

References

https://security.tanium.com/TAN-2025-026

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 5, 2026
Vulnerability Reserved
Dec 29, 2025

Credit

Filip Waeytens

Frank Lycops

Jean-Michel Huguet

Jorge Escabias

Justin Hocquel from NCIA/NCSC

CVE-2025-15334 Data

JSON