Exposures › CVE-2026-6973
Ivanti EPMM allows remote code execution for authenticated admins via improper input validation.
This vulnerability enables remote code execution for users with administrative access, posing a severe risk to endpoint management systems in defense organizations. DIB orgs must patch immediately to prevent attackers from leveraging compromised admin credentials to execute arbitrary code on managed endpoints. The active exploitation status indicates this is a current threat vector.
Shame score — Active exploitation of a remote code execution vulnerability in widely deployed endpoint management software.
Ivanti Endpoint Manager Mobile (EPMM) contains an improper input validation vulnerability that allows a remotely authenticated user with administrative access to achieve remote code execution.
| Product | Provider | Status | Match |
|---|---|---|---|
| Ivanti Neurons for ITSM (Formerly Service Manager) | Ivanti | Authorized | vendor-exact · 0.90 |
| Ivanti Neurons for MDM (Formerly MobileIron) | Ivanti | Authorized | vendor-exact · 0.90 |