Ivanti has released security patches for three critical vulnerabilities across its products, including two zero-day flaws in Endpoint Manager Mobile (EPMM) that have been exploited in the wild. The vulnerabilities allow remote, unauthenticated attackers to execute arbitrary code or bypass authentication, posing a significant risk to affected systems.
Affected: Ivanti Endpoint Manager Mobile, Neurons for ITSM, Cloud Security Application, Ivanti Neurons for MDM
Affected: Ivanti Endpoint Manager Mobile, Neurons for ITSM, Cloud Security Application, Ivanti Neurons for MDM
Keypoints
- Ivanti issued patches for two exploited zero-day vulnerabilities in EPMM that allow remote code execution and authentication bypass.
- The zero-day flaws impact open-source libraries integrated into Ivantiβs EPMM products.
- Applying the latest patches (versions 11.12.0.5, 12.3.0.2, 12.4.0.2, and 12.5.0.1) is strongly recommended to mitigate risks.
- Additional updates were released for Neurons for ITSM, CSA, and N-MDM to fix critical and high-severity vulnerabilities.
- Ivanti emphasizes that the risk is reduced if API access is filtered with ACLs or external WAFs and provides support resources for customers.
Read More: https://www.securityweek.com/ivanti-patches-two-epmm-zero-days-exploited-to-hack-customers/