Description
Tanium addressed an incorrect default permissions vulnerability in Comply.
Published: 2026-02-05
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

References
Link Providers
https://security.tanium.com/TAN-2025-029 cve-icon cve-icon
History

Tue, 10 Feb 2026 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Tanium comply
CPEs cpe:2.3:a:tanium:comply:*:*:*:*:*:*:*:*
Vendors & Products Tanium comply

Fri, 06 Feb 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 05 Feb 2026 18:45:00 +0000

Type Values Removed Values Added
Description Tanium addressed an incorrect default permissions vulnerability in Comply.
Title Tanium addressed an incorrect default permissions vulnerability in Comply.
First Time appeared Tanium
Tanium service Comply
Weaknesses CWE-276
CPEs cpe:2.3:a:tanium:service_comply:2.24.158:*:*:*:*:*:*:*
cpe:2.3:a:tanium:service_comply:2.29.123:*:*:*:*:*:*:*
cpe:2.3:a:tanium:service_comply:2.32.154:*:*:*:*:*:*:*
Vendors & Products Tanium
Tanium service Comply
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N'}

Subscriptions

Tanium Comply Service Comply
cve-icon MITRE

Status: PUBLISHED

Assigner: Tanium

Published:

Updated: 2026-02-06T18:16:35.695Z

Reserved: 2025-12-29T23:13:49.402Z

Link: CVE-2025-15340

cve-icon Vulnrichment

Updated: 2026-02-06T18:16:31.295Z

cve-icon NVD

Status : Analyzed

Published: 2026-02-05T19:15:55.240

Modified: 2026-02-10T17:14:41.130

Link: CVE-2025-15340

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses