> TritonInfoSec News
Home / May 08, 2026 / Story
0
#2 The Hacker News general May 07, 2026 at 17:55 UTC

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

By [email protected] (The Hacker News)

AI Summary

Ivanti disclosed CVE-2026-6973 (CVSS 7.2), an improper input validation flaw in Endpoint Manager Mobile (EPMM) affecting versions prior to 12.6.1.1, 12.7.0.1, and 12.8.0.1 that allows a remotely authenticated admin-level user to achieve RCE. CISA issued a four-day remediation deadline for federal agencies, underscoring active zero-day exploitation. Ivanti's recurring pattern of actively exploited edge-device vulnerabilities makes this a high-priority patch for any enterprise running EPMM.

Read full article → https://thehackernews.com/2026/05/ivanti-epmm-cve-…

Relevance score: 91.0/100

# More from May 08

  1. 1
    PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage The Hacker News
  2. 3
    Canvas Breach Disrupts Schools & Colleges Nationwide Krebs on Security
  3. 4
    Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions The Hacker News
  4. 5
    PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems The Hacker News
  5. 6
    Polish Security Agency Reports ICS Breaches at Five Water Treatment Plants SecurityWeek
  6. 7
    Iranian government hackers using Chaos ransomware as cover, researchers say The Record
  7. 8
    Critical vm2 sandbox bug lets attackers execute code on hosts BleepingComputer
  8. 9
    DAEMON Tools devs confirm breach, release malware-free version BleepingComputer
  9. 10
    New TCLBanker malware self-spreads over WhatsApp and Outlook BleepingComputer