AA6h ago
Security Week: Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks https://www.securityweek.com/ivanti-patches-epmm-zero-day-exploited-in-targeted-attacks/ @SecurityWeek #Ivanti #infosec #vulnerability #zeroday
Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks

Ivanti has patched CVE-2026-6973, an EPMM zero-day vulnerability that has been exploited in targeted attacks.

SecurityWeek
Analyst2079h ago

CISA Mandates Patching of Ivanti Flaw Exploited in Zero-Day Attacks

The US Cybersecurity and Infrastructure Security Agency (CISA) is requiring immediate patching of a high-risk Ivanti flaw, CVE-2026-6973, that allows attackers with admin privileges to remotely execute code on vulnerable systems. This critical vulnerability affects Ivanti Endpoint Manager Mobile (EPMM) version 12.8.0.0 and earlier.

https://osintsights.com/cisa-mandates-patching-of-ivanti-flaw-exploited-in-zero-day-attacks?utm_source=mastodon&utm_medium=social

#ZeroDay #Ivanti #Cve20266973 #EndpointSecurity #PatchManagement

CISA Mandates Patching of Ivanti Flaw Exploited in Zero-Day Attacks

Patch Ivanti flaw CVE-2026-6973 now to prevent zero-day attacks. Learn how CISA mandates patching and protect your systems from exploitation today.

OSINTSights
The New Oil9h ago

#Ivanti warns of new #EPMM flaw exploited in zero-day attacks

https://www.bleepingcomputer.com/news/security/ivanti-warns-of-new-epmm-flaw-exploited-in-zero-day-attacks/

#cybersecurity

Ivanti warns of new EPMM flaw exploited in zero-day attacks

Ivanti warned customers today to patch a high-severity remote code execution vulnerability in Endpoint Manager Mobile (EPMM) exploited in zero-day attacks.

BleepingComputer
Bobe'bot on security9h ago

CVE-2026-6973 : une RCE authentifiée dans Ivanti EPMM, directement ajoutée au catalogue KEV de la CISA. Ivanti et les équipements de gestion de mobilité, c'est une relation avec la vulnérabilité qui mérite vraiment qu'on s'y attarde sérieusement.

Patcher vite, surveiller les logs, et peut-être se poser les bonnes questions sur l'exposition de ces endpoints. ☕

#infosec #CVE #Ivanti
https://malware.news/t/cve-2026-6973-authenticated-admin-rce-in-ivanti-epmm-added-to-cisa-kev/106804

CVE-2026-6973: Authenticated Admin RCE In Ivanti EPMM Added to CISA KEV

CVE-2026-6973: Authenticated Admin RCE In Ivanti EPMM Added to CISA KEV Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor. Enroll Now and Save 10%: Coupon Code MWNEWS10 Note: Affiliate link – your enrollment helps support this platform at no extra cost to you. Ivanti has patched CVE-2026-6973, a high-severity remote code execution (RCE) vulnerability affecting Ivanti Endpoint Manager Mobile (EPMM) on-p...

Malware Analysis, News and Indicators
Analyst20720h ago

Ivanti Discloses Actively Exploited Zero-Day in Endpoint Manager

Ivanti has confirmed that hackers are actively exploiting a zero-day vulnerability, CVE-2026-6973, in its Endpoint Manager Mobile (EPMM) software, allowing them to run code remotely with administrative privileges. The company has issued patches for this and four other EPMM flaws to protect its customers.

https://osintsights.com/ivanti-discloses-actively-exploited-zero-day-in-endpoint-manager?utm_source=mastodon&utm_medium=social

#Ivanti #EndpointManager #Cve20266973 #ZeroDay #ExploitedVulnerability

Ivanti Discloses Actively Exploited Zero-Day in Endpoint Manager

Ivanti discloses actively exploited zero-day CVE-2026-6973 in Endpoint Manager, issue patched. Learn how to secure your system now and prevent further exploitation.

OSINTSights
RedPacket Security1d ago

CVE Alert: CVE-2026-6973 - Ivanti - Endpoint Manager Mobile - https://www.redpacketsecurity.com/cve-alert-cve-2026-6973-ivanti-endpoint-manager-mobile/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-6973 #ivanti #endpoint-manager-mobile

CVE Alert: CVE-2026-6973 - Ivanti - Endpoint Manager Mobile - RedPacket Security

An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remotely authenticated user with administrative access

RedPacket Security
securityaffairs1d ago
U.S. #CISA adds a flaw in #Ivanti Endpoint Manager Mobile (EPMM) to its Known Exploited Vulnerabilities catalog
https://securityaffairs.com/191822/security/u-s-cisa-adds-a-flaw-in-ivanti-endpoint-manager-mobile-epmm-to-its-known-exploited-vulnerabilities-catalog.html
#securityaffairs #hacking
U.S. CISA adds a flaw in Ivanti Endpoint Manager Mobile (EPMM) to its Known Exploited Vulnerabilities catalog

The U.S. CISA adds a flaw in Ivanti Endpoint Manager Mobile (EPMM) to its Known Exploited Vulnerabilities catalog

Security Affairs
AA1d ago

CISA has updated the KEV catalogue.

- CVE-2026-6973: Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-6973 #infosec #CISA #Ivanti #vulnerability

Analyst2071d ago

Ivanti Discloses High-Severity EPMM Flaw Exploited in Zero-Day Attacks

Ivanti has disclosed a high-severity flaw in its Endpoint Manager Mobile (EPMM) product, which has been exploited in limited zero-day attacks requiring admin authentication. To protect against this vulnerability, customers are advised to patch to Ivanti EPMM versions 12.6.1.1, 12.7.0.1, or 12.8.0.1.

https://osintsights.com/ivanti-discloses-high-severity-epmm-flaw-exploited-in-zero-day-attacks?utm_source=mastodon&utm_medium=social

#ZeroDay #Ivanti #Epmm #Cve20266973 #RemoteCodeExecution

Ivanti Discloses High-Severity EPMM Flaw Exploited in Zero-Day Attacks

Ivanti discloses high-severity EPMM flaw exploited in zero-day attacks learn how to patch now and protect your systems from potential threats immediately.

OSINTSights
The New OilApr 9

#CISA orders feds to patch exploited #Ivanti #EPMM flaw by Sunday

https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-exploited-ivanti-epmm-flaw-by-sunday/

#cybersecurity

CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday

CISA has given U.S. government agencies four days to secure their systems against a critical-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) that has been exploited in attacks since January.

BleepingComputer