Tanium Cloud Workloads Enforce Client Extension Use-After-Free Flaw

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

4.7

Tanium Cloud Workloads Enforce Client Extension Use-After-Free Flaw

CVE-2026-2408

Summary

The Tanium Cloud Workloads Enforce client extension has a flaw that could allow attackers to potentially execute malicious code. This issue is fixed in a recent update, so it's essential for administrators to ensure they are running the latest version to prevent any potential issues. Users of the Tanium Cloud Workloads Enforce client should update their software as soon as possible to stay secure.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
tanium	cloud_workloads	<= 1.0.222	–

Original title

Tanium addressed a use-after-free vulnerability in the Cloud Workloads Enforce client extension.

Original description

Tanium addressed a use-after-free vulnerability in the Cloud Workloads Enforce client extension.

nvd CVSS3.1 4.7

Vulnerability type

CWE-416 Use After Free

https://security.tanium.com/TAN-2026-005 Vendor Advisory

Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026