Improper Input Validation in Tanium Discover
CVE-2026-0925

2.7LOW

Key Information:

Vendor: Tanium
Status: Discover
Vendor: CVE Published:; 26 January 2026

What is CVE-2026-0925?

Tanium's Discover product faced a vulnerability due to improper input validation, which could let attackers exploit the system. It is essential for users to ensure that their systems are up to date with the latest patches to mitigate potential risks. For further details, refer to the official security advisory TAN-2026-002.

Affected Version(s)

Discover 4.10 < 4.10.134

Discover 4.15 < 4.15.130

References

https://security.tanium.com/TAN-2026-002

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 26, 2026
Vulnerability Reserved
Jan 13, 2026

CVE-2026-0925 Data

JSON