2026-001 Critical vulnerabilities in Ivanti EPMM — CERT-EU-SA2026-001
CERT-EU · CERT-EU · CERT-EU-SA2026-001
ID
CERT-EU-SA2026-001
CERT-EU-SA2026-001
Date
Activity
Source
CERT-EU
CERT-EU
Vendor
CERT-EU
CERT-EU
Threat
critical
critical
Exploited
Yes
Yes
Summary
On 29 January 2026, Ivanti released a security advisory addressing two critical vulnerabilities in their EPMM products. An attacker could exploit those flaws to achieve unauthenticated remote code execution on the vulnerable device. One of these vulnerabilities have been exploited in a limited number of cases.
Product
Security advisory
What to do
General, cautious steps (verify details in the official source):
- Prioritize patching or mitigation immediately (treat as actively risky).
- Identify affected product versions in your inventory and verify whether you are impacted.
- Apply vendor patches/updates or recommended mitigations as soon as available.
- Check logs/telemetry for indicators of compromise and suspicious activity.
- Consider temporary hardening: restrict access, reduce attack surface, and monitor aggressively.
- Read the official advisory for exact affected versions and remediation steps.