{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-1344", "assignerOrgId": "3938794e-25f5-4123-a1ba-5cbd7f104512", "state": "PUBLISHED", "assignerShortName": "Tanium", "dateReserved": "2026-01-22T16:16:38.983Z", "datePublished": "2026-02-17T23:43:30.432Z", "dateUpdated": "2026-02-18T13:41:49.780Z"}, "containers": {"cna": {"affected": [{"product": "Enforce Recovery Key Portal", "vendor": "Tanium", "versions": [{"version": "1.0.0", "status": "affected", "lessThan": "1.62.5", "versionType": "custom"}], "cpes": ["cpe:2.3:a:tanium:service_enforce_recovery-key-portal:1.62.4:*:*:*:*:*:*:*"]}], "dateAssigned": "2026-01-22T16:16:38.364Z", "datePublic": "2026-02-17T23:43:20.540Z", "descriptions": [{"lang": "en", "value": "Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal."}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-732", "description": "Incorrect Permission Assignment for Critical Resource", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "3938794e-25f5-4123-a1ba-5cbd7f104512", "shortName": "Tanium", "dateUpdated": "2026-02-17T23:43:30.432Z"}, "references": [{"name": "TAN-2026-003", "url": "https://security.tanium.com/TAN-2026-003"}], "title": "Insecure file permissions in Enforce Recovery Key Portal"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-18T13:40:38.287908Z", "id": "CVE-2026-1344", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-18T13:41:49.780Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-1344", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-18T13:40:38.287908Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-18T13:40:50.672Z"}}], "cna": {"title": "Insecure file permissions in Enforce Recovery Key Portal", "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N"}}], "affected": [{"cpes": ["cpe:2.3:a:tanium:service_enforce_recovery-key-portal:1.62.4:*:*:*:*:*:*:*"], "vendor": "Tanium", "product": "Enforce Recovery Key Portal", "versions": [{"status": "affected", "version": "1.0.0", "lessThan": "1.62.5", "versionType": "custom"}]}], "datePublic": "2026-02-17T23:43:20.540Z", "references": [{"url": "https://security.tanium.com/TAN-2026-003", "name": "TAN-2026-003"}], "dateAssigned": "2026-01-22T16:16:38.364Z", "descriptions": [{"lang": "en", "value": "Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-732", "description": "Incorrect Permission Assignment for Critical Resource"}]}], "providerMetadata": {"orgId": "3938794e-25f5-4123-a1ba-5cbd7f104512", "shortName": "Tanium", "dateUpdated": "2026-02-17T23:43:30.432Z"}}}, "cveMetadata": {"cveId": "CVE-2026-1344", "state": "PUBLISHED", "dateUpdated": "2026-02-18T13:41:49.780Z", "dateReserved": "2026-01-22T16:16:38.983Z", "assignerOrgId": "3938794e-25f5-4123-a1ba-5cbd7f104512", "datePublished": "2026-02-17T23:43:30.432Z", "assignerShortName": "Tanium"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tanium:enforce_recovery_key_portal:*:*:*:*:*:*:*:*", "matchCriteriaId": "4F928A04-5110-47A8-9232-85F07CC5045E", "versionEndExcluding": "1.62.5", "versionStartIncluding": "1.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal."}, {"lang": "es", "value": "Tanium abord\u00f3 una vulnerabilidad de permisos de archivo inseguros en el Portal de Claves de Recuperaci\u00f3n de Enforce."}], "id": "CVE-2026-1344", "lastModified": "2026-03-09T18:05:55.490", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.0, "impactScore": 4.0, "source": "3938794e-25f5-4123-a1ba-5cbd7f104512", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-02-18T00:16:18.040", "references": [{"source": "3938794e-25f5-4123-a1ba-5cbd7f104512", "tags": ["Vendor Advisory"], "url": "https://security.tanium.com/TAN-2026-003"}], "sourceIdentifier": "3938794e-25f5-4123-a1ba-5cbd7f104512", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-732"}], "source": "3938794e-25f5-4123-a1ba-5cbd7f104512", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[1.0.0,1.62.5)"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Enforce Recovery Key Portal", "source": "cna", "vendor": "Tanium"}, "product": "service_enforce_recovery-key-portal", "vendor": "tanium"}], "analysis": {"en": {"generated_at": "2026-04-17T18:48:58.773420+00:00", "value": {"mitigation_remediation": ["Upgrade to the latest version of Tanium Enforce Recovery Key Portal that contains the fix for the insecure file permissions issue.", "Override default file permissions on the portal directories and files to ensure that only privileged accounts can read or write them, following the principles of least privilege.", "Enable file integrity monitoring and audit logging on the portal to detect any unauthorized access or modification of protected files."], "summary": {"action": "Apply Patch", "impact": "Insecure file permissions that could allow unauthorized access or modification of sensitive files"}, "threat_synthesis": {"affected_systems": "The vulnerable component is Tanium\u2019s Enforce Recovery Key Portal, including the service_enforce_recovery-key-portal product version\u00a01.62.4. The general product is indicated by the CPE strings, showing that any instance of Tanium Enforce Recovery Key Portal may be impacted; no other product versions are listed.", "description_and_impact": "CVE-2026-1344 describes an insecure file permissions flaw in Tanium\u2019s Enforce Recovery Key Portal, identified as CWE\u2011732. The incorrect assignment of file permissions could allow an attacker or compromised account to read, modify, or delete files that should be protected, leading to potential compromise of system data and configuration and undermining the integrity and confidentiality of sensitive information.", "risk_and_exploitability": "CVSS score of\u00a06.5 signals a medium severity risk, and the EPSS\u00a0<1% indicates that, as of the latest data, the likelihood of exploitation is low. It is not part of the CISA KEV list. Attackers would need access to the system hosting the portal or an authenticated user with sufficient privileges to benefit from the weakened permissions. Because the flaw involves incorrect permission assignment, the vulnerability can be exploited by simply reading or writing files that should be restricted, which could lead to data exposure or unauthorized configuration changes."}}}}, "created": "2026-02-18T10:33:01.170046+00:00", "updated": "2026-04-17T19:00:11.025357+00:00", "vendors": ["tanium", "tanium$PRODUCT$service_enforce_recovery-key-portal"]}