Search
Find a vulnerability
Search criteria
2 vulnerabilities found for Trends by Tanium
CVE-2026-1292 (GCVE-0-2026-1292)
Vulnerability from nvd – Published: 2026-02-19 23:10 – Updated: 2026-03-02 15:50
VLAI
Title
Tanium addressed an insertion of sensitive information into log file vulnerability in Trends.
Summary
Tanium addressed an insertion of sensitive information into log file vulnerability in Trends.
Severity
6.5 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-532 - Insertion of Sensitive Information into Log File
Assigner
References
1 reference
Impacted products
Date Public
2026-02-19 23:09
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-1292",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-02T15:50:37.988052Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-02T15:50:54.033Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"cpes": [
"cpe:2.3:a:tanium:service_trends:3.10.19:*:*:*:*:*:*:*",
"cpe:2.3:a:tanium:service_trends:3.11.77:*:*:*:*:*:*:*"
],
"product": "Trends",
"vendor": "Tanium",
"versions": [
{
"lessThan": "3.10.20",
"status": "affected",
"version": "3.10.0",
"versionType": "custom"
},
{
"lessThan": "3.11.79",
"status": "affected",
"version": "3.11.0",
"versionType": "custom"
}
]
}
],
"dateAssigned": "2026-01-21T16:30:45.079Z",
"datePublic": "2026-02-19T23:09:55.630Z",
"descriptions": [
{
"lang": "en",
"value": "Tanium addressed an insertion of sensitive information into log file vulnerability in Trends."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-532",
"description": "Insertion of Sensitive Information into Log File",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-19T23:10:23.372Z",
"orgId": "3938794e-25f5-4123-a1ba-5cbd7f104512",
"shortName": "Tanium"
},
"references": [
{
"name": "TAN-2026-007",
"url": "https://security.tanium.com/TAN-2026-007"
}
],
"title": "Tanium addressed an insertion of sensitive information into log file vulnerability in Trends."
}
},
"cveMetadata": {
"assignerOrgId": "3938794e-25f5-4123-a1ba-5cbd7f104512",
"assignerShortName": "Tanium",
"cveId": "CVE-2026-1292",
"datePublished": "2026-02-19T23:10:23.372Z",
"dateReserved": "2026-01-21T16:30:45.783Z",
"dateUpdated": "2026-03-02T15:50:54.033Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-1292 (GCVE-0-2026-1292)
Vulnerability from cvelistv5 – Published: 2026-02-19 23:10 – Updated: 2026-03-02 15:50
VLAI
Title
Tanium addressed an insertion of sensitive information into log file vulnerability in Trends.
Summary
Tanium addressed an insertion of sensitive information into log file vulnerability in Trends.
Severity
6.5 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-532 - Insertion of Sensitive Information into Log File
Assigner
References
1 reference
Impacted products
Date Public
2026-02-19 23:09
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-1292",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-02T15:50:37.988052Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-02T15:50:54.033Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"cpes": [
"cpe:2.3:a:tanium:service_trends:3.10.19:*:*:*:*:*:*:*",
"cpe:2.3:a:tanium:service_trends:3.11.77:*:*:*:*:*:*:*"
],
"product": "Trends",
"vendor": "Tanium",
"versions": [
{
"lessThan": "3.10.20",
"status": "affected",
"version": "3.10.0",
"versionType": "custom"
},
{
"lessThan": "3.11.79",
"status": "affected",
"version": "3.11.0",
"versionType": "custom"
}
]
}
],
"dateAssigned": "2026-01-21T16:30:45.079Z",
"datePublic": "2026-02-19T23:09:55.630Z",
"descriptions": [
{
"lang": "en",
"value": "Tanium addressed an insertion of sensitive information into log file vulnerability in Trends."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-532",
"description": "Insertion of Sensitive Information into Log File",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-19T23:10:23.372Z",
"orgId": "3938794e-25f5-4123-a1ba-5cbd7f104512",
"shortName": "Tanium"
},
"references": [
{
"name": "TAN-2026-007",
"url": "https://security.tanium.com/TAN-2026-007"
}
],
"title": "Tanium addressed an insertion of sensitive information into log file vulnerability in Trends."
}
},
"cveMetadata": {
"assignerOrgId": "3938794e-25f5-4123-a1ba-5cbd7f104512",
"assignerShortName": "Tanium",
"cveId": "CVE-2026-1292",
"datePublished": "2026-02-19T23:10:23.372Z",
"dateReserved": "2026-01-21T16:30:45.783Z",
"dateUpdated": "2026-03-02T15:50:54.033Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}