Ivanti

vulnerabilities 2026-05-11
Ivanti EPMM CVE-2026-6973 Hits CISA KEV as Federal Patch Deadline Passes
Ivanti confirms in-the-wild exploitation of CVE-2026-6973, an authenticated-admin RCE in Endpoint Manager Mobile. CISA gave federal agencies until May 10 to patch — that window has now closed.
ivanti epmm mdm zero-day cisa-kev rce cve-2026-6973
vulnerabilities 2026-04-08
CISA Adds Ivanti EPMM Zero-Days to KEV as Mass Exploitation Ramps Up
CISA adds CVE-2026-1340 to the Known Exploited Vulnerabilities catalog as attackers chain two Ivanti EPMM zero-days for unauthenticated RCE against mobile device management infrastructure.
ivanti epmm zero-day cve-2026-1281 cve-2026-1340 cisa-kev rce mdm
2026-04-01
Your Firewall Is the Foothold: Q1 2026's Edge Device Exploitation Epidemic
Three months into 2026, edge devices are the dominant entry point for attackers. A deep dive into the FortiGate SSO bypass and Ivanti EPMM RCE chains, and why this pattern shows no signs of stopping.
network-appliance fortinet ivanti vulnerability edge-device authentication-bypass ransomware cve

Ivanti EPMM CVE-2026-6973 Hits CISA KEV as Federal Patch Deadline Passes