FeedVulnerabilityNew Ivanti EPMM 0-Day Vulnerability Actively Exploited in At...
VulnerabilityCyber Security News
7.2HIGH

New Ivanti EPMM 0-Day Vulnerability Actively Exploited in Attacks

📅 7 May 2026 at 16:29 UTC📰 Cyber Security NewsView original source ↗

Ivanti has issued a critical security advisory for its Endpoint Manager Mobile (EPMM) product, disclosing multiple actively exploited vulnerabilities, including CVE-2026-6973, and urging all on-premises EPMM customers to apply patches immediately. At the time of disclosure, Ivanti confirmed active exploitation of CVE-2026-6973, a vulnerability that requires admin authentication to succeed. The flaws exclusively affect the […] The post New Ivanti EPMM 0-Day Vulnerability Actively Exploited in Attacks appeared first on Cyber Security News.

🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview

Ivanti EPMM customers are at risk due to multiple actively exploited vulnerabilities, including CVE-2026-6973, which allows remote code execution with administrative access. The vulnerability was exclusively found in versions prior to 12.6.1.1, 12.7.0.1, and 12.8.0.1.

⚙️Technical Details
CVEs
CVE-2026-6973Affected Systems: Ivanti Endpoint Manager MobileAttack Vectors: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Systems
Ivanti Endpoint Manager Mobile
Attack Vectors
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
💥Impact Assessment
Severity: critical
Who Is at Risk
Ivanti EPMM customers with administrative access
🛡️Recommended Actions
1Apply patches immediately to versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 or later
2Restrict administrative access to EPMM
3Monitor for suspicious activity on affected systems
📦Affected Products
Ivanti Endpoint Manager Mobile
🔐NVD Verified DataVERIFIED
CVE-2026-6973CVSS 7.2HIGH
Attack Vector
NETWORK
Complexity
LOW
Vector String
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Weaknesses
CWE-20
Affected Products (CPE)
Ivanti Endpoint Manager Mobile

Read the full article

This is a curated summary. The complete article is available at Cyber Security News.

Read on Cyber Security News
← Back to feed