CVE-2025-15323
Unknown Unknown - Not Provided
Improper Certificate Validation in Tanium Appliance Risks Security Breach

Publication date: 2026-02-05

Last updated on: 2026-02-10

Assigner: Tanium

Description
Tanium addressed an improper certificate validation vulnerability in Tanium Appliance.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-05
Last Modified
2026-02-10
Generated
2026-06-16
AI Q&A
2026-02-05
EPSS Evaluated
2026-06-14
NVD
CVE-2025-15323
EUVD
EUVD-2025-206851
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
tanium tanos From 1.8.3 (inc) to 1.8.3.0199 (exc)
tanium tanos From 1.8.4 (inc) to 1.8.4.0205 (exc)
tanium tanos From 1.8.5 (inc) to 1.8.5.0236 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-295 The product does not validate, or incorrectly validates, a certificate.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-15323 is an improper certificate validation vulnerability in Tanium Appliance. It allows an unauthenticated attacker over the network to view or tamper with log data when a remote syslog destination is configured to use TLS.

Impact Analysis

This vulnerability can allow an attacker to access or modify log data transmitted to a remote syslog server using TLS, potentially exposing sensitive information or corrupting log integrity.

Compliance Impact

I don't know

Detection Guidance

There are no specific detection commands or methods provided to identify this vulnerability on your network or system.

Mitigation Strategies

No workarounds or mitigations are available for this vulnerability.

The vulnerability is resolved by updating the Tanium Appliance to Update 24 (v1.8.3.0199) or later for 2024H1, Update 12 (v1.8.4.0205) or later for 2024H2, or Update 6 (v1.8.5.0236) or later for 2025H1.

Therefore, the immediate step is to apply the appropriate update to your Tanium Appliance to remediate this issue.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-15323. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart