Ivanti has issued a security advisory warning that multiple critical vulnerabilities in its Endpoint Manager Mobile software could allow remote code execution. The vulnerabilities, tracked as CVE-2026-1281 and CVE-2026-1340, affect versions 12.5.0.x, 12.5.1.x, 12.6.0.x, 12.6.1.x, and 12.7.0.x without specific security patches. Attackers could exploit these flaws to execute arbitrary code remotely without authentication. Ivanti reports the vulnerabilities are actively being exploited in targeted attacks. Affected systems should apply the RPM scripts RPM_12.x.0.x or RPM_12.x.1.x to mitigate risks. Organizations are advised to isolate compromised devices, check HTTP logs for suspicious activity, and reset passwords for all associated accounts. Permanent fixes require upgrading to version 12.8.0.0.
Summary of content from
https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-001/
Made by AI. If you spot anything of concern write us at contact@cybach.com. We’ll promptly correct irregularities.