> TritonInfoSec News
Home / May 09, 2026 / Story
0
#2 BleepingComputer general May 07, 2026 at 15:20 UTC

Ivanti warns of new EPMM flaw exploited in zero-day attacks

By Sergiu Gatlan

AI Summary

Ivanti disclosed CVE-2026-6973, a high-severity remote code execution vulnerability in Endpoint Manager Mobile (EPMM) that was actively exploited in zero-day attacks before the patch was released. CISA issued a directive requiring federal agencies to patch within four days, underscoring the severity and active exploitation. Ivanti EPMM administrators should prioritize emergency patching given the product's history as a high-value target for nation-state actors.

Read full article → https://www.bleepingcomputer.com/news/security/iva…

Relevance score: 87.0/100

# More from May 09

  1. 1
    Palo Alto Networks firewall zero-day exploited for nearly a month BleepingComputer
  2. 3
    Canvas login portals hacked in mass ShinyHunters extortion campaign BleepingComputer
  3. 4
    New Linux 'Dirty Frag' zero-day gives root on all major distros BleepingComputer
  4. 5
    Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking SecurityWeek
  5. 6
    Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion SecurityWeek
  6. 7
    Trellix source code breach claimed by RansomHouse hackers BleepingComputer
  7. 8
    Americans sentenced for running 'laptop farms' for North Korea BleepingComputer
  8. 9
    New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials The Hacker News
  9. 10
    Chrome 148 Rolls Out With 127 Security Fixes SecurityWeek