🚨 Ivanti EPMM: Luka RCE aktywnie wykorzystywana. Alert dla polskich firm.

Ivanti ostrzega przed luką zero-day w oprogramowaniu Endpoint Manager Mobile (EPMM), która pozwala na zdalne wykonanie kodu. Zagrożenie dotyczy instalacji on-premise i jest już wykorzystywane w atakach.

→ https://cyberowi.pl/ivanti-epmm-luka-rce-aktywnie-wykorzystywana-alert-dla/

#ivanti #cve20266973 #rce #zeroday

#cyberbezpieczenstwo

🚨 Alert: Aktywny atak na Ivanti EPMM (CVE-2026-6973). Pilne łatanie wymagane.

Wykryto lukę RCE w Ivanti EPMM, która jest już wykorzystywana w atakach. Amerykańska agencja CISA nakazała pilne łatanie. Polskie firmy korzystające z tego rozwiązania on-premise muszą działać natychmiast.

→ https://cyberowi.pl/alert-aktywny-atak-na-ivanti-epmm-cve-2026-6973-pilne/

#ivanti #cve20266973 #rce #mdm

#cyberbezpieczenstwo

CISA Mandates Patching of Ivanti Flaw Exploited in Zero-Day Attacks

The US Cybersecurity and Infrastructure Security Agency (CISA) is requiring immediate patching of a high-risk Ivanti flaw, CVE-2026-6973, that allows attackers with admin privileges to remotely execute code on vulnerable systems. This critical vulnerability affects Ivanti Endpoint Manager Mobile (EPMM) version 12.8.0.0 and earlier.

https://osintsights.com/cisa-mandates-patching-of-ivanti-flaw-exploited-in-zero-day-attacks?utm_source=mastodon&utm_medium=social

#ZeroDay #Ivanti #Cve20266973 #EndpointSecurity #PatchManagement

Ivanti Discloses Actively Exploited Zero-Day in Endpoint Manager

Ivanti has confirmed that hackers are actively exploiting a zero-day vulnerability, CVE-2026-6973, in its Endpoint Manager Mobile (EPMM) software, allowing them to run code remotely with administrative privileges. The company has issued patches for this and four other EPMM flaws to protect its customers.

https://osintsights.com/ivanti-discloses-actively-exploited-zero-day-in-endpoint-manager?utm_source=mastodon&utm_medium=social

#Ivanti #EndpointManager #Cve20266973 #ZeroDay #ExploitedVulnerability

Ivanti EPMM Flaw Exploited, Grants Admin-Level Access

A critical flaw in Ivanti's Endpoint Manager Mobile (EPMM) has been exploited, allowing attackers to gain admin-level access - and the government is taking swift action to mitigate the threat. Federal agencies are now required to remediate the vulnerability, known as CVE-2026-6973, by May 10, 2026.

https://osintsights.com/ivanti-epmm-flaw-exploited-grants-admin-level-access?utm_source=mastodon&utm_medium=social

#IvantiEpmmFlaw #Cve20266973 #EndpointManagerMobile #RemoteCodeExecution #KnownExploitedVulnerabilities

Ivanti Discloses High-Severity EPMM Flaw Exploited in Zero-Day Attacks

Ivanti has disclosed a high-severity flaw in its Endpoint Manager Mobile (EPMM) product, which has been exploited in limited zero-day attacks requiring admin authentication. To protect against this vulnerability, customers are advised to patch to Ivanti EPMM versions 12.6.1.1, 12.7.0.1, or 12.8.0.1.

https://osintsights.com/ivanti-discloses-high-severity-epmm-flaw-exploited-in-zero-day-attacks?utm_source=mastodon&utm_medium=social

#ZeroDay #Ivanti #Epmm #Cve20266973 #RemoteCodeExecution