Ivanti has released security updates for its Endpoint Manager Mobile (EPMM) product to address five vulnerabilities, including a high-severity zero-day flaw (CVE-2026-6973) that has been exploited in targeted attacks. The company advises affected customers to follow previous recommendations to mitigate risks associated with this and other related vulnerabilities.
For a professional focused on cybersecurity and threat intelligence, the key takeaway is the critical importance of patch management and proactive credential rotation. Ivanti's update for the Endpoint Manager Mobile addresses a high-severity zero-day vulnerability (CVE-2026-6973) that has been exploited in targeted attacks. Ensuring timely patch application and following previous advisories to rotate credentials can significantly mitigate risks associated with these vulnerabilities, as demonstrated by the reduced exploitation risk for those who preemptively rotated credentials in line with recommendations for earlier related vulnerabilities.