Ethical Hacking News
A high-severity zero-day vulnerability has been added to the Known Exploited Vulnerabilities catalog, with a rating of 7.1. This means that organizations using Ivanti Endpoint Manager Mobile without applying the latest patches are at risk of successful exploitation. Prompt action is required to patch vulnerabilities and protect against attacks.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity zero-day vulnerability in Ivanti Endpoint Manager Mobile to its Known Exploited Vulnerabilities catalog. The vulnerability, CVE-2026-6973, allows attackers with admin privileges to execute arbitrary code on systems running EPMM 12.8.0.0 and earlier. Ivanti has urged its customers to apply the latest patches and updates immediately to prevent compromise. Federal agencies are required to fix the vulnerability by May 10, 2026, as per the binding operational directive (BOD) 22-01. Private organizations and enterprises should review their infrastructure for similar vulnerabilities and prioritize patch management and regular security assessments.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a high-severity zero-day vulnerability in the Ivanti Endpoint Manager Mobile (EPMM) to its Known Exploited Vulnerabilities catalog, highlighting the growing concern for enterprise security in the wake of increasingly sophisticated cyber threats. The addition of this vulnerability, tracked as CVE-2026-6973 with a CVSS score of 7.1, marks another example of how rapidly evolving threats can pose significant risks to organizations relying on outdated or unpatched software.
According to the CISA advisory, the vulnerability is caused by improper input validation and allows attackers with admin privileges to execute arbitrary code on systems running EPMM 12.8.0.0 and earlier. This means that enterprises using Ivanti Endpoint Manager Mobile without applying the latest patches are vulnerable to exploitation. The severity of this vulnerability has been rated as high, indicating a significant risk of successful exploitation.
Ivanti has taken swift action in response to the discovery of this vulnerability, urging its customers to apply the latest patches and updates immediately to prevent compromise. EPMM 12.6.1.1, 12.7.0.1, and 12.8.0.1 are identified as versions that address the vulnerability.
The binding operational directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities, issued by FCEB agencies, emphasizes the importance of addressing identified vulnerabilities within a specified timeframe to protect against attacks exploiting flaws in the catalog. In this case, federal agencies are required to fix the vulnerability by May 10, 2026.
Private organizations and enterprises should take note of this development as well, reviewing their infrastructure for any similar vulnerabilities. With the increasing reliance on software updates and patches to stay secure, it is crucial for organizations to prioritize patch management and regular security assessments.
Furthermore, this incident underscores the importance of staying up-to-date with the latest information regarding known exploited vulnerabilities. Organizations should regularly monitor the CISA Known Exploited Vulnerabilities catalog to ensure they are aware of any newly added entries and can implement necessary security measures in a timely manner.
In conclusion, the addition of the CVE-2026-6973 vulnerability in Ivanti Endpoint Manager Mobile by the U.S. CISA highlights the ever-evolving landscape of cyber threats and underscores the importance of proactive security measures for enterprises relying on such software.
Related Information:
https://www.ethicalhackingnews.com/articles/US-CISA-Adds-a-High-Severity-Zero-Day-Vulnerability-to-Ivanti-Endpoint-Manager-Mobile-EPMM-A-Growing-Concern-for-Enterprise-Security-ehn.shtml
https://securityaffairs.com/191822/security/u-s-cisa-adds-a-flaw-in-ivanti-endpoint-manager-mobile-epmm-to-its-known-exploited-vulnerabilities-catalog.html
https://www.cybersecuritydive.com/news/cisa-second-critical-flaw-ivanti-epmm-exploited/817080/
https://nvd.nist.gov/vuln/detail/CVE-2026-6973
https://www.cvedetails.com/cve/CVE-2026-6973/
Published: Thu May 7 13:24:19 2026 by llama3.2 3B Q4_K_M
