What is the CVSS score of CVE-2026-9156?

CVE-2026-9156 has a CVSS 3.1 base score of 6.5 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N. EPSS exploitation probability: 0.0%.

Is there a patch available for CVE-2026-9156?

Yes, a patch is available for CVE-2026-9156. Update the affected software to the latest version immediately.

Tanium Server CVE-2026-9156

EUVD-2026-32034 MEDIUM

Missing Release of Resource after Effective Lifetime (CWE-772)

2026-05-27 3938794e-25f5-4123-a1ba-5cbd7f104512

GHSA-8987-p6rf-jvmc

Denial Of Service

6.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

Analysis Generated

May 27, 2026 - 21:41 vuln.today

Patch available

May 27, 2026 - 19:46 EUVD

DescriptionNVD

Tanium addressed a denial of service vulnerability in Tanium Server.

AnalysisAI

Authenticated network-accessible denial of service in Tanium Server affects three active release branches, patched in versions 7.6.4.2190, 7.7.3.8274, and 7.8.2.1176. The vulnerability stems from a CWE-772 resource leak - allocated resources are not released after their effective lifetime, enabling a low-privileged authenticated attacker to exhaust server resources. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-9156 vulnerability details – vuln.today

Back

Tanium Server CVE-2026-9156

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Full analysis requires sign-in

Share

External POC / Exploit Code