Morning Overview on MSN

Ivanti patches a high-severity zero-day in Endpoint Manager that gave attackers remote code execution in targeted attacks

Ivanti has released emergency patches for its Endpoint Manager Mobile platform after confirming that attackers exploited a ...

CISA gives feds four days to patch Ivanti flaw exploited as zero-day

CISA has given U.S. federal agencies four days to secure their networks against a high-severity vulnerability in Ivanti ...
Hosted on MSN

Ivanti zero-days spur urgent push for secure-by-design practices

Zero-days in Ivanti: Two Ivanti EPMM vulnerabilities, CVE-2026-6973 and CVE-2026-1281, were exploited in targeted attacks, enabling remote code execution on mobile management servers. CISA's rapid ...
heise online

Ivanti closes gaps in Application Control Engine, Avalanche and EPM

Ivanti has released security updates for several products, some of which fix critical vulnerabilities. Updates are available for Ivanti's software management software Application Control Engine, ...
Dark Reading

Critical Ivanti vTM Bug Allows Unauthorized Admin Access

Ivanti has patched another major vulnerability, this time affecting its Virtual Traffic Manager (vTM). Ivanti vTM is an application delivery controller (ADC) within its vADC (Virtual Application ...