Skip to main content

Tanium Threat Response CVE-2026-6392

| EUVDEUVD-2026-24593 LOW
Information Exposure (CWE-200)
2026-04-22 Tanium
2.7
CVSS 3.1 · NVD

Severity by source

NVD PRIMARY
2.7 LOW
AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None

Lifecycle Timeline

6
Patch released
Apr 22, 2026 - 21:23 nvd
Patch available
Patch available
Apr 22, 2026 - 05:01 EUVD
Analysis Generated
Apr 22, 2026 - 03:23 vuln.today
EUVD ID Assigned
Apr 22, 2026 - 03:00 euvd
EUVD-2026-24593
Analysis Generated
Apr 22, 2026 - 03:00 vuln.today
CVE Published
Apr 22, 2026 - 01:46 nvd
LOW 2.7

DescriptionCVE.org

Tanium addressed an information disclosure vulnerability in Threat Response.

AnalysisAI

Information disclosure vulnerability in Tanium Threat Response allows high-privileged authenticated users to access sensitive data via network requests. The vulnerability affects all versions of Threat Response and requires administrator-level privileges to exploit, resulting in confidentiality impact with no integrity or availability compromise. No active exploitation has been publicly identified.

Technical ContextAI

The vulnerability is classified as an information disclosure flaw (CWE-200), indicating improper access control or exposure of sensitive information. Tanium Threat Response is a security platform for threat hunting and incident response. The network-accessible nature (AV:N) combined with high privilege requirements (PR:H) suggests the vulnerability exists in an authenticated administrative interface or API endpoint where authorization checks may be insufficient to prevent disclosure of restricted data to high-privileged users. The low complexity (AC:L) indicates the exploitation does not require special conditions beyond authentication.

RemediationAI

Tanium has addressed this vulnerability; refer to security advisory TAN-2026-011 at https://security.tanium.com/TAN-2026-011 for the specific patched version and upgrade instructions. The primary remediation is to update Threat Response to the vendor-released patched version as detailed in the advisory. As an interim compensating control pending patching, restrict administrative access to Threat Response to only necessary personnel and implement network segmentation to limit who can reach the administrative interface, reducing the pool of potential attackers with the required PR:H privilege level. Monitor administrative account activity and API access logs for unusual data retrieval patterns that may indicate exploitation attempts.

Share

CVE-2026-6392 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy