Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

Published: 3 days ago (May 7, 2026 at 01:55 PM EDT)

1 min read

Source: The Hacker News

Overview

Ivanti is warning that a new security flaw impacting Endpoint Manager Mobile (EPMM) has been observed in limited attacks in the wild.

Vulnerability Details

Identifier: CVE‑2026‑6973
CVSS Score: 7.2 (high severity)
Affected Versions: EPMM versions prior to 12.6.1.1, 12.7.0.1, and 12.8.0.1
Type: Improper input validation

The flaw allows a remotely authenticated user with administrative access to achieve remote code execution, granting admin‑level privileges on the affected system.

Back to Blog

Ivanti warns of new EPMM flaw exploited in zero-day attacks

Ivanti warned customers today to patch a high‑severity remote code execution vulnerability in Endpoint Manager Mobile EPMM that is being exploited in zero‑day a...

CISA gives feds four days to patch Ivanti flaw exploited as zero-day

!https://www.bleepstatic.com/content/hl-images/2026/03/10/Ivanti.jpg Overview The U.S. Cybersecurity and Infrastructure Security Agency CISA has given federal a...

Palo Alto Networks firewall zero-day exploited for nearly a month

markdown !https://www.bleepstatic.com/content/hl-images/2024/11/08/Palo-Alto-Networks.jpg Palo Alto Networks warned customers that suspected state‑sponsored hac...

Microsoft Edge Stores Passwords In Plaintext In RAM

Findings Security researcher Tom Joran Sonstebyseter Ronning discovered that Microsoft Edge stores passwords in plaintext in RAM. After creating a password and...