CVE-2025-15321
Unknown Unknown - Not Provided
Improper Input Validation in Tanium Appliance Risks Data Integrity

Publication date: 2026-02-05

Last updated on: 2026-02-10

Assigner: Tanium

Description
Tanium addressed an improper input validation vulnerability in Tanium Appliance.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-05
Last Modified
2026-02-10
Generated
2026-06-16
AI Q&A
2026-02-05
EPSS Evaluated
2026-06-15
NVD
CVE-2025-15321
EUVD
EUVD-2025-206840
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
tanium tanos From 1.8.3 (inc) to 1.8.3.0196 (exc)
tanium tanos From 1.8.4 (inc) to 1.8.4.0199 (exc)
tanium tanos From 1.8.5 (inc) to 1.8.5.0227 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-863 The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.
CWE-426 The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-15321 is an improper input validation vulnerability found in the Tanium Appliance. It allows an authenticated user with the tanadmin role to gain unauthorized read-only access to data beyond their permitted scope.

This vulnerability affects Tanium Appliance versions prior to certain updates in the 2024H1, 2024H2, and 2025H1 releases.

Impact Analysis

The vulnerability can lead to unauthorized read-only access to data beyond what an authenticated tanadmin user is normally allowed to see. This could expose sensitive information to users who should not have access to it.

However, the severity is considered low with a CVSS base score of 2.7, and it requires the attacker to already have authenticated access with a high privilege role.

Compliance Impact

I don't know

Detection Guidance

There are no specific detection commands or methods provided to identify this vulnerability on your network or system.

The vulnerability requires an authenticated TanOS user with the tanadmin role to exploit improper input validation, so monitoring for unauthorized access attempts by such users might help, but no explicit detection commands are given.

Mitigation Strategies

The immediate step to mitigate this vulnerability is to apply the available updates or later versions of the Tanium Appliance.

  • Update to at least Update 22 (v1.8.3.0196) in the 2024H1 release.
  • Or update to at least Update 11 (v1.8.4.0199) in the 2024H2 release.
  • Or update to at least Update 5 (v1.8.5.0227) in the 2025H1 release.

No workarounds or other mitigations are provided.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-15321. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart