CVE-2025-15315

Summary

Tanium addressed a local privilege escalation vulnerability in Tanium Module Server.

Affected Software

VendorProductVersion RangeStatus
TaniumTanium Module Server7.5.6.0 < 7.5.6.1161affected
TaniumTanium Module Server7.4.6.0 < 7.4.6.1151affected
TaniumTanium Module Server7.6.2.0 < 7.6.2.1293affected
TaniumTanium Module Server7.6.4.0 < 7.6.4.2114affected

Weaknesses

  • CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References