CVE Field Guide
About Us
CVE-2026-2408
PUBLISHED
Use-after-free in Cloud Workloads
Assigner:
Tanium
Reserved:
12.02.2026
Published:
19.02.2026
Updated:
19.02.2026
Tanium addressed a use-after-free vulnerability in the Cloud Workloads Enforce client extension.
Metrics
CVSS 3.1
CVSS Vector:
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
CVSS Score:
4.7
CVSS score
4.7
Attack Vector
Local
Scope
Unchanged
Attack Complexity
High
Confidentiality Impact
None
Privileges Required
Low
Integrity Impact
None
User Interaction
None
Availability Impact
High
CVSS 3.1
Product Status
Vendor
Tanium
Product
Cloud Workloads
Versions
affected from 1.0.222 to 1.0.222 (excl.)
References
TAN-2026-005
Problem Types
Use After Free
CWE