CVE-2025-15322 MEDIUM

CVE-2025-15322: Tanium addressed an improper access controls vulnerability in Tanium Server.

Vendor Tanium

Product Tanium Server

Weakness CWE-863 · Incorrect authorization

Published January 30, 2026

Last update February 5, 2026

CVSS base score

4.3/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality Low

Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Tanium addressed an improper access controls vulnerability in Tanium Server.

Key dates

January 30, 2026 CVE published

February 5, 2026 Record updated

External resources

Related vulnerabilities

CVE CVE-2025-15322

CWE CWE-863

CVSS 4.3 / MEDIUM

Vendor Tanium

Product Tanium Server

Affected ≥ 7.6.2.0 and < 7.6.2.1327

Vendor Tanium

Product Tanium Server

Affected ≥ 7.6.4.0 and < 7.6.4.2160

Vendor Tanium

Product Tanium Server

Affected ≥ 7.7.3.0 and < 7.7.3.8231