The Register on MSN

January blues return as Ivanti coughs up exploited EPMM zero-days

Consider yourselves compromised, experts warn Ivanti has patched two critical zero-day vulnerabilities in its Endpoint ...
SecurityWeek

Ivanti Patches Exploited EPMM Zero-Days

Ivanti has patched CVE-2026-1281 and CVE-2026-1340, two Endpoint Manager Mobile (EPMM) flaws exploited as zero-days.

Ivanti warns of two EPMM flaws exploited in zero-day attacks

Ivanti has disclosed two critical vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-1281 and CVE-2026-1340, that were exploited in zero-day attacks.

Critical flaws in Ivanti EPMM lead to fast-moving exploitation attempts

Security researchers warn that the initial threat activity was highly targeted, as a limited number of users were impacted prior to disclosure.
CRN

Ivanti: ‘Critical’ Mobile Management Vulnerabilities Seeing Exploitation

A pair of critical-severity vulnerabilities affecting an Ivanti mobile management tool have been exploited in cyberattacks, ...

Ivanti endpoint manager can become endpoint ravager, thanks to quartet of critical flaws

Security engineers have released a proof-of-concept exploit for four critical Ivanti Endpoint Manager bugs, giving those who ...
CSO Online

Ivanti patches two actively exploited critical vulnerabilities in EPMM

The code injection flaws allow for unauthenticated remote code execution on Ivanti Endpoint Manager Mobile deployments, but ...