#cve-2026-6973
#cve-2026-6973

[ follow ]

Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks

Ivanti patched five Endpoint Manager Mobile vulnerabilities, including exploited CVE-2026-6973, and urged credential rotation to reduce chained attack risk.

fromThe Hacker News

5 days ago

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

Ivanti is warning that a new security flaw impacting Endpoint Manager Mobile (EPMM) has been explored in limited attacks in the wild. The high-severity vulnerability, CVE-2026-6973 (CVSS score: 7.2), is a case of improper input validation affecting EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1. It allows "a remotely authenticated user with administrative access to achieve remote code execution," Ivanti said in an advisory released today.

Information security

[ Load more ]

#cve-2026-6973#cve-2026-6973

Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

#cve-2026-6973
#cve-2026-6973