https://thehackernews.com/2025/05/ivanti-patches-epmm-vulnerabilities.html?version=meter+at+null
Ivanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks
Ivanti patched CVE-2025-4427 and CVE-2025-4428 in EPMM after limited exploitation + On-prem only risk.
remote code execution
https://thehackernews.com/2025/09/cisa-warns-of-two-malware-strains.html?version=meter+at+null
CISA Warns of Two Malware Strains Exploiting Ivanti EPMM CVE-2025-4427 and CVE-2025-4428
CISA details attackers exploiting Ivanti EPMM zero-days CVE-2025-4427/4428 in May 2025, enabling persistent remote code execution on vulnerable server
https://www.ivanti.com/en-gb/blog/epmm-security-update
EPMM Security Update | Ivanti
Ivanti is issuing an important security update addressing vulnerabilities associated with open-source libraries used in Ivanti Endpoint Manager Mobile (EPMM).
security updateepmmivanti
https://www.ivanti.com/blog/cve-2023-35082-vulnerability-affecting-epmm-and-mobileiron-core
CVE-2023-35082 - Vulnerability affecting EPMM and MobileIron Core | Ivanti
A vulnerability has been discovered in MobileIron Core which affects version 11.2 and prior. The vulnerability was incidentally resolved in MobileIron Core 11.3
cve2023vulnerabilityaffectingepmm
https://securityaffairs.com/190519/security/u-s-cisa-adds-a-flaw-in-ivanti-epmm-to-its-known-exploited-vulnerabilities-catalog-2.html?ref=metacurity.com
U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog
Apr 8, 2026 - The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog
https://www.ivanti.com/blog/january-2026-epmm-security-update
January 2026 EPMM Security Update | Ivanti
In the month of January 2026, Ivanti is issuing an important security update addressing vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM).
january 2026security updateepmmivanti
https://thehackernews.com/2026/05/ivanti-epmm-cve-2026-6973-rce-under.html
Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access
Ivanti EPMM flaw CVE-2026-6973 exploited in limited attacks; CISA mandates fixes by May 10, 2026, increasing urgency.
https://www.cybersecuritydive.com/news/critical-flaws-ivanti-epmm-exploitation/811228/
Critical flaws in Ivanti EPMM lead to fast-moving exploitation attempts | Cybersecurity Dive
Security researchers warn that the initial threat activity was highly targeted, as a limited number of users were impacted prior to disclosure.
https://www.ivanti.com/blog/ivanti-epmm-cve-2023-39335-39337
Security Advisory: Ivanti EPMM CVE-2023-39335-39337
We have discovered two new vulnerabilities in Ivanti Endpoint Manager Mobile. We are reporting these vulnerabilities as CVE-2023-39335 and CVE-2023-39337.
security advisoryivantiepmmcve2023
https://www.helpnetsecurity.com/2025/05/13/ivanti-epmm-vulnerabilities-exploited-in-the-wild-cve-2025-4427-cve-2025-4428/
Ivanti EPMM vulnerabilities exploited in the wild (CVE-2025-4427, CVE-2025-4428) - Help Net Security
May 16, 2025 - Attackers have exploited vulnerabilities in open-source libraries to compromise on-prem Ivanti EPMM instances of some Ivanti customers.