Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks

Friday, May 8, 2026 at 05:41 AM UTC·Source: SecurityWeek

Updated: Friday, May 8, 2026 at 06:00 AM UTC

Executive Summary

CVE-2026-6973 is a high-severity vulnerability that allows an attacker who has admin privileges to execute arbitrary code. The post Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks appeared first on SecurityWeek .

Analysis

Indicators of Compromise (1)

CVE (1)

CVE-2026-6973

NVD MITRE CVE

Source Attribution

Originally published by SecurityWeek on May 8, 2026.

Related Threats

CRITICALZero Day

AI security is repeating endpoint security’s biggest mistake

The security industry is experiencing déjà vu, and most teams haven’t recognized it yet. If you were in the trenches during the early 2000s, you remember the antivirus arms race. IT teams buried under signature updates. Configuration baselines checked obsessively. Patch cycles treated as the primary defense. Meanwhile, attackers pivoted. They wrote malware that matched no known signature and walke

1h agoCSO Online

CRITICALVulnerability

Five new holes, one exploited, found in Ivanti Endpoint Manager Mobile

The five new vulnerabilities discovered in Ivanti’s on-premises mobile endpoint management solution are a “classic example of the legacy trap” that CSOs must avoid, says an expert. “Patch today to survive the weekend,” said Robert Enderle of the Enderle Group, “but start planning your exit from legacy MDM as soon as possible.” He was commenting on an advisory issued Thursday by Ivanti about the di

CVE-2026-6973CVE-2026-5787

2d agoCSO Online

CRITICALZero Day

CISA gives feds four days to patch Ivanti flaw exploited as zero-day

CISA has given U.S. federal agencies four days to secure their networks against a high-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) exploited in zero-day attacks. [...]

2d agoBleepingComputer