Ivanti has released security patches for critical vulnerabilities in Endpoint Manager Mobile (EPMM) that could allow remote code execution and authentication bypass. The company emphasizes timely updates to mitigate risks, particularly for on-premise deployments.
Affected: Ivanti Endpoint Manager Mobile.
Affected: Ivanti Endpoint Manager Mobile.
Keypoints
- Ivanti released security updates to address two vulnerabilities in Endpoint Manager Mobile (EPMM) that enable remote code execution and authentication bypass.
- The vulnerabilities, CVE-2025-4427 and CVE-2025-4428, impact certain versions of EPMM and have been exploited in limited cases.
- The flaws are linked to two open-source libraries integrated into the EPMM software.
- Impact versions include 11.12.0.4 and prior, 12.3.0.1 and prior, 12.4.0.1 and prior, and 12.5.0.0 and prior, with fixed releases available.
- Ivanti recommends updating to the latest versions and emphasizes that the issues affect only on-premise EPMM, not cloud-based solutions.
- Additionally, patches have been released for a high-severity authentication bypass in Ivanti Neurons for ITSM (CVE-2025-22462).
- The company highlights that proper access filtering and firewall use can significantly reduce the risk of exploitation.
Read More: https://thehackernews.com/2025/05/ivanti-patches-epmm-vulnerabilities.html