Skip to main content

Tanium Server CVE-2026-15053

| EUVDEUVD-2026-42245 HIGH
Memory Allocation with Excessive Size Value (CWE-789)
2026-07-08 3938794e-25f5-4123-a1ba-5cbd7f104512 GHSA-83fv-4g7p-rcp3
7.5
CVSS 3.1 · Vendor: 3938794e-25f5-4123-a1ba-5cbd7f104512
Share

Severity by source

Vendor (3938794e-25f5-4123-a1ba-5cbd7f104512) PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
vuln.today AI
7.5 HIGH

Network-reachable management service, unauthenticated and low-complexity per vendor vector; impact is availability-only (memory exhaustion), so C:N/I:N/A:H with unchanged scope.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (3938794e-25f5-4123-a1ba-5cbd7f104512).

CVSS VectorVendor: 3938794e-25f5-4123-a1ba-5cbd7f104512

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

2
Patch available
Jul 08, 2026 - 15:01 EUVD
Analysis Generated
Jul 08, 2026 - 14:31 vuln.today

DescriptionCVE.org

Tanium addressed a denial of service vulnerability in Tanium Server.

AnalysisAI

Denial of service in Tanium Server allows remote unauthenticated attackers to exhaust availability of the platform, per vendor advisory TAN-2026-016. The flaw is network-reachable with low complexity and no privileges or user interaction (CVSS 7.5, availability-only impact), and the CWE-789 classification indicates an uncontrolled/excessive memory allocation can be triggered remotely. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Reach Tanium Server over network
Delivery
Send crafted request
Exploit
Trigger excessive memory allocation (CWE-789)
Execution
Exhaust server memory
Impact
Crash management service (DoS)

Vulnerability AssessmentAI

Exploitation Per the CVSS vector (AV:N/AC:L/PR:N/UI:N), no special conditions are required beyond network reachability to the Tanium Server - remote unauthenticated exploitation with low complexity and no user interaction. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The signals here are moderate and internally consistent: CVSS 3.1 base is 7.5 driven entirely by high availability impact (AV:N/AC:L/PR:N/UI:N, C:N/I:N/A:H), so this is network-exploitable without authentication but cannot compromise confidentiality or integrity. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with network reachability to the Tanium Server sends a specially crafted request that causes the server to attempt an excessively large memory allocation, exhausting available memory and crashing or hanging the service. This disrupts endpoint management, patching, and security operations across all managed endpoints until the server is restarted or patched. …
Remediation Apply the fixed Tanium Server release identified in vendor advisory TAN-2026-016 (https://security.tanium.com/TAN-2026-016); the exact patched version was not included in the input data and should be taken directly from that advisory. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Restrict network access to Tanium Server to authorized systems only; enable real-time monitoring of server memory and CPU utilization for anomalous spikes. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

More in Server

View all
CVE-2018-1000881 CRITICAL POC
9.8 Dec 20

Traccar Traccar Server version 4.0 and earlier contains a CWE-94: Improper Control of Generation of Code ('Code Injectio

CVE-2026-60104 CRITICAL POC
9.3 Jul 08

Account takeover in self-hosted Bitwarden Server before 2026.6.0 lets a low-privileged organization member steal any oth

CVE-2026-43639 HIGH POC
8.9 May 11

Provider service users in Bitwarden Server Cloud can hijack arbitrary organizations via unauthorized API endpoint access

CVE-2021-42973 HIGH POC
8.8 Dec 07

NoMachine Server is affected by Integer Overflow. Rated high severity (CVSS 8.8), this vulnerability is low attack compl

CVE-2021-42972 HIGH POC
8.8 Dec 07

NoMachine Server is affected by Buffer Overflow. Rated high severity (CVSS 8.8), this vulnerability is low attack comple

CVE-2026-43640 HIGH POC
8.6 May 11

Authentication bypass in Bitwarden Server versions prior to 2026.4.1 allows authenticated users with SCIM management pri

CVE-2019-25609 HIGH POC
8.6 Mar 22

JetAudio jetCast Server 2.0 contains a stack-based buffer overflow vulnerability in the Log Directory configuration fiel

CVE-2023-30223 HIGH POC
7.5 Jun 16

A broken authentication vulnerability in 4D SAS 4D Server software v17, v18, v19 R7, and earlier allows attackers to sen

CVE-2023-30222 HIGH POC
7.5 Jun 16

An information disclosure vulnerability in 4D SAS 4D Server Application v17, v18, v19 R7 and earlier allows attackers to

CVE-2026-57520 HIGH POC
7.1 Jun 25

Privilege escalation in self-hosted Bitwarden Server before 2026.5.0 lets an authenticated organization member holding a

CVE-2017-7855 MEDIUM POC
6.1 Aug 31

In the webmail component in IceWarp Server 11.3.1.5, there was an XSS vulnerability discovered in the "language" paramet

CVE-2022-39395 CRITICAL
9.9 Nov 10

Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golang. Rated critical se

Share

CVE-2026-15053 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy