Friday, 10 July 2026

Ivanti fixed zero-day vulnerability in EPMM

Ivanti published its May 2026 security updates for the Endpoint Manager Mobile (EPMM) product to address five vulnerabilities (CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, CVE-2026-6973, CVE-2026-7821), including a zero-day vulnerability (CVE-2026-6973). Ivanti reports that this vulnerability (CVE-2026-6973) is likely to be exploited in the wild.   

A remote attacker could exploit some of these vulnerabilities for privilege escalation, information disclosure and remote code execution on the target system.

These security vulnerabilities have been addressed in Ivanti Endpoint Manager Mobile versions 12.6.1.1, 12.7.0.1, and 12.8.0.1.

More information on vulnerabilities and updates is available in security advisory – ivanti.com.

19 May 2026

-
10