Skip to content

TAN-2026-005

Tanium addressed a use-after-free vulnerability in the Cloud Workloads Enforce client extension.

Severity: Medium

Base Score: 4.7

Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact

This vulnerability could allow an attacker with access to a Tanium Client Container to perform a denial of service attack against the Enforce client extension.

Products Affected

2025H1 Release:

  • Cloud Workloads prior to Update 14 (v1.0.222)

2025H2 Release:

  • Cloud Workloads prior to Update 5 (v1.0.222)

Available Updates

2025H1 Release:

  • Update 14 (Cloud Workloads v1.0.222) and later

2025H2 Release:

  • Update 5 (Cloud Workloads v1.0.222) and later

For on-prem customers, in addition to upgrading Cloud Workloads, users should redeploy the Tanium Cluster Client Container. https://help.tanium.com/bundle/ug_cloud_workloads_onprem/page/cloud_workloads/deploying_clients.html

For Tanium Cloud customers, users should redeploy the Tanium Cluster Client Container. https://help.tanium.com/bundle/ug_cloud_workloads_cloud/page/cloud_workloads/deploying_clients.html

Workaround and Mitigations

None.

Acknowledgements

None.