{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-1292", "assignerOrgId": "3938794e-25f5-4123-a1ba-5cbd7f104512", "state": "PUBLISHED", "assignerShortName": "Tanium", "dateReserved": "2026-01-21T16:30:45.783Z", "datePublished": "2026-02-19T23:10:23.372Z", "dateUpdated": "2026-03-02T15:50:54.033Z"}, "containers": {"cna": {"affected": [{"product": "Trends", "vendor": "Tanium", "versions": [{"version": "3.10.0", "status": "affected", "lessThan": "3.10.20", "versionType": "custom"}, {"version": "3.11.0", "status": "affected", "lessThan": "3.11.79", "versionType": "custom"}], "cpes": ["cpe:2.3:a:tanium:service_trends:3.10.19:*:*:*:*:*:*:*", "cpe:2.3:a:tanium:service_trends:3.11.77:*:*:*:*:*:*:*"]}], "dateAssigned": "2026-01-21T16:30:45.079Z", "datePublic": "2026-02-19T23:09:55.630Z", "descriptions": [{"lang": "en", "value": "Tanium addressed an insertion of sensitive information into log file vulnerability in Trends."}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-532", "description": "Insertion of Sensitive Information into Log File", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "3938794e-25f5-4123-a1ba-5cbd7f104512", "shortName": "Tanium", "dateUpdated": "2026-02-19T23:10:23.372Z"}, "references": [{"name": "TAN-2026-007", "url": "https://security.tanium.com/TAN-2026-007"}], "title": "Tanium addressed an insertion of sensitive information into log file vulnerability in Trends."}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-02T15:50:37.988052Z", "id": "CVE-2026-1292", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-02T15:50:54.033Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-1292", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-02T15:50:37.988052Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-02T15:50:42.388Z"}}], "cna": {"title": "Tanium addressed an insertion of sensitive information into log file vulnerability in Trends.", "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}}], "affected": [{"cpes": ["cpe:2.3:a:tanium:service_trends:3.10.19:*:*:*:*:*:*:*", "cpe:2.3:a:tanium:service_trends:3.11.77:*:*:*:*:*:*:*"], "vendor": "Tanium", "product": "Trends", "versions": [{"status": "affected", "version": "3.10.0", "lessThan": "3.10.20", "versionType": "custom"}, {"status": "affected", "version": "3.11.0", "lessThan": "3.11.79", "versionType": "custom"}]}], "datePublic": "2026-02-19T23:09:55.630Z", "references": [{"url": "https://security.tanium.com/TAN-2026-007", "name": "TAN-2026-007"}], "dateAssigned": "2026-01-21T16:30:45.079Z", "descriptions": [{"lang": "en", "value": "Tanium addressed an insertion of sensitive information into log file vulnerability in Trends."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-532", "description": "Insertion of Sensitive Information into Log File"}]}], "providerMetadata": {"orgId": "3938794e-25f5-4123-a1ba-5cbd7f104512", "shortName": "Tanium", "dateUpdated": "2026-02-19T23:10:23.372Z"}}}, "cveMetadata": {"cveId": "CVE-2026-1292", "state": "PUBLISHED", "dateUpdated": "2026-03-02T15:50:54.033Z", "dateReserved": "2026-01-21T16:30:45.783Z", "assignerOrgId": "3938794e-25f5-4123-a1ba-5cbd7f104512", "datePublished": "2026-02-19T23:10:23.372Z", "assignerShortName": "Tanium"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tanium:trends:*:*:*:*:*:*:*:*", "matchCriteriaId": "3EA30A8A-E4E6-49A3-BD17-F098F2BE0800", "versionEndExcluding": "3.10.20", "versionStartIncluding": "3.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:tanium:trends:*:*:*:*:*:*:*:*", "matchCriteriaId": "68A2AFFC-A9C9-4B34-87CF-165BFA511ABA", "versionEndExcluding": "3.11.79", "versionStartIncluding": "3.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Tanium addressed an insertion of sensitive information into log file vulnerability in Trends."}, {"lang": "es", "value": "Tanium abord\u00f3 una vulnerabilidad de inserci\u00f3n de informaci\u00f3n sensible en archivo de registro en Trends."}], "id": "CVE-2026-1292", "lastModified": "2026-02-27T23:48:33.440", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "3938794e-25f5-4123-a1ba-5cbd7f104512", "type": "Secondary"}]}, "published": "2026-02-20T00:16:14.520", "references": [{"source": "3938794e-25f5-4123-a1ba-5cbd7f104512", "tags": ["Vendor Advisory"], "url": "https://security.tanium.com/TAN-2026-007"}], "sourceIdentifier": "3938794e-25f5-4123-a1ba-5cbd7f104512", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-532"}], "source": "3938794e-25f5-4123-a1ba-5cbd7f104512", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[3.10.0,3.10.20)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[3.11.0,3.11.79)"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Trends", "source": "cna", "vendor": "Tanium"}, "product": "service_trends", "vendor": "tanium"}], "analysis": {"en": {"generated_at": "2026-04-17T17:44:31.903865+00:00", "value": {"mitigation_remediation": ["Apply the latest vendor patch or upgrade to a version of Tanium Service Trends that includes the fix for the log injection issue.", "Modify log configuration to exclude or mask sensitive data so that passwords, personal information, or system credentials are not recorded.", "Regularly audit log files to ensure no confidential data is being captured and adjust monitoring to detect unusual log content."], "summary": {"action": "Apply Patch", "impact": "Potential Disclosure of Sensitive Information"}, "threat_synthesis": {"affected_systems": "The vulnerability impacts Tanium\u2019s Trends product, specifically Service Trends releases 3.10.19 and 3.11.77, along with any later releases that exhibit the same logging behavior. End\u2011users should verify the exact version installed in their environment by consulting the product version information and ensure that their system is not running an affected release.", "description_and_impact": "Tanium reported that certain log files within the Trends component may contain unsolicited sensitive information, creating a confidentiality risk. The underlying weakness is logged as a CWE\u2011532 condition, reflecting that logs should not contain personally or system\u2011sensitive data. When triggered, the compromised logs can reveal confidential data to an attacker who can read the files, potentially enabling information disclosure. The vulnerability does not affect system integrity or availability directly but permits unauthorized access to data that should remain private.", "risk_and_exploitability": "The CVSS score of 6.5 indicates moderate severity, while an EPSS score of less than 1% reflects a very low probability of exploitation at the time of analysis. The issue is not cataloged in the CISA KEV list, suggesting no publicly known exploits currently exist. Based on the description, the attack vector is not explicitly documented; it is inferred that an attacker would need the ability to read the log files or otherwise trigger log writes, implying either local or remote privilege within the system. Consequently, the risk level remains moderate but requires timely mitigation to prevent accidental data leakage."}}}}, "created": "2026-02-20T09:53:26.340654+00:00", "updated": "2026-04-17T17:45:24.353691+00:00", "vendors": ["tanium", "tanium$PRODUCT$service_trends"]}