What is the CVSS score of CVE-2026-9208?

CVE-2026-9208 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Tanium Connect are affected by CVE-2026-9208?

Tanium Connect (CVE-2026-9208) contains a remote code execution vulnerability that allows low-privilege authenticated users to execute arbitrary commands and achieve full system compromise.. A patch is available.

Tanium Connect CVE-2026-9208

EUVD-2026-32667 HIGH

OS Command Injection (CWE-78)

2026-05-27 Tanium

GHSA-2qj8-f68j-jw3x

RCE Command Injection

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch available

May 27, 2026 - 23:03 EUVD

Analysis Generated

May 27, 2026 - 22:01 vuln.today

DescriptionNVD

Tanium addressed an unauthorized code execution vulnerability in Connect.

AnalysisAI

Unauthorized OS command execution in Tanium Connect allows an attacker holding low-privilege authenticated access to run arbitrary commands on the host, achieving full compromise of confidentiality, integrity, and availability. The CVSS 8.8 (network vector, low complexity, low privileges, no user interaction) reflects an authenticated remote code execution issue rooted in command injection (CWE-78). …

RemediationAI

24 hours: Inventory all systems running Tanium Connect; document current versions and user access levels; restrict Connect access to only essential personnel. 7 days: Implement network segmentation to isolate Tanium-managed endpoints; enable audit logging on all Connect administrative and command activities. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-9208 vulnerability details – vuln.today

Back

Tanium Connect CVE-2026-9208

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code