CVE Vulnerabilities

CVE-2026-15053

Memory Allocation with Excessive Size Value

Published: Jul 08, 2026 | Modified: Jul 10, 2026
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io logo minimus.io logo echo.ai logo

Tanium addressed a denial of service vulnerability in Tanium Server.

Weakness

The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.

Affected Software

NameVendorStart VersionEnd Version
ServerTanium7.7.3.0 (including)7.7.3.8298 (excluding)
ServerTanium7.8.2.0 (including)7.8.2.1198 (excluding)
ServerTanium7.8.4.0 (including)7.8.4.1327 (excluding)

Potential Mitigations

References