Full Report
Ivanti security advisory (AV26-068) – Update 1
Analysis Summary
# Vulnerability: Critical Flaws in Ivanti Endpoint Manager Mobile (EPMM)
## CVE Details
- CVE ID: CVE-2026-1281, CVE-2026-1340 (Note: Severity scores were not explicitly provided in the summary text, assumed high based on exploitation status.)
- CVSS Score: Not specified in the provided text.
- CWE: Not specified in the provided text.
## Affected Systems
- Products: Ivanti Endpoint Manager Mobile (EPMM)
- Versions:
- Version 12.5.0.0 and prior
- Version 12.6.0.0 and prior
- Version 12.7.0.0 and prior
- Version 12.5.1.0 and prior
- Version 12.6.1.0 and prior
- Configurations: Not specified.
## Vulnerability Description
The advisory addresses critical vulnerabilities in Ivanti EPMM, identified as CVE-2026-1281 and CVE-2026-1340. (Specific technical details defining the flaw types—such as RCE, authentication bypass, etc.—are not detailed in this summary update, only the existence and acknowledgement.)
## Exploitation
- Status: Exploited in the wild (for both CVE-2026-1281 and CVE-2026-1340). CVE-2026-1281 has been added to CISA's KEV Database.
- Complexity: Not specified.
- Attack Vector: Not specified.
## Impact
- Confidentiality: Not specified.
- Integrity: Not specified.
- Availability: Not specified.
## Remediation
### Patches
- Ivanti has published updates addressing these vulnerabilities. Users must refer to the vendor advisory for specific patch versions corresponding to affected software branches.
### Workarounds
- No specific workarounds were detailed in this summary update. Users should prioritize applying available patches.
## Detection
- Detection methods and tools can be found in the "Analysis Guidance Ivanti Endpoint Manager Mobile (EPMM) CVE-2026-1281 & CVE-2026-1340" document linked by the vendor.
## References
- Vendor Advisory: hxxps://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340?language=en_US
- Analysis Guidance: hxxps://forums.ivanti.com/s/article/Analysis-Guidance-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340?language=en_US
- CISA KEV Listing: hxxps://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2026-1281