Ivanti has alerted customers to a high-severity remote code execution vulnerability in its Endpoint Manager Mobile (EPMM) software, tracked as CVE-2026-6973, which is being exploited in zero-day attacks. Users are advised to patch their systems and review administrative accounts to mitigate risks, as the flaw allows remote attackers with admin privileges to execute arbitrary code.
The most actionable insight for you is that Ivanti has disclosed a high-severity zero-day vulnerability (CVE-2026-6973) in their Endpoint Manager Mobile (EPMM) product, which requires immediate patching to mitigate potential exploitation. Ensure systems are updated with Ivanti EPMM versions 12.6.1.1, 12.7.0.1, or 12.8.0.1, and review admin accounts and credentials to minimize risk. This is crucial as over 850 IP addresses with Ivanti EPMM fingerprints are exposed online, primarily in Europe and North America.