What's Happening?
Ivanti has announced the release of patches for several vulnerabilities in its Endpoint Manager (EPM) software, addressing issues that were initially disclosed in October 2025. The company has identified
a high-severity authentication bypass vulnerability, tracked as CVE-2026-1603, which could lead to the exposure of credential data. Additionally, a medium-severity SQL injection flaw, CVE-2026-1602, was also patched, which could allow authenticated attackers to read arbitrary data from the database. These vulnerabilities were reported to Ivanti in November 2024 and were publicly disclosed by Trend Micro’s Zero Day Initiative. The latest update, EPM 2024 SU5, includes fixes for these and 11 other medium-severity vulnerabilities. Ivanti has stated that there is no evidence of these vulnerabilities being exploited in the wild, but urges users to update to the latest version to ensure security.
Why It's Important?
The release of these patches is crucial for organizations using Ivanti's Endpoint Manager, as the vulnerabilities could potentially allow attackers to escalate privileges and execute arbitrary code remotely. This poses a significant risk to data security and operational integrity. By addressing these vulnerabilities, Ivanti is helping to protect sensitive data and maintain the security of IT environments. The proactive patching of these issues also highlights the importance of regular software updates and vulnerability management in preventing cyber threats. Organizations that fail to update their systems may remain vulnerable to exploitation, which could lead to data breaches and other security incidents.
What's Next?
Ivanti advises users to migrate to supported versions of Endpoint Manager, as older versions like EPM 2022 have reached End of Life and no longer receive security updates. The company has also updated its advisory for two recently disclosed Endpoint Manager Mobile vulnerabilities, providing indicators of compromise and a detection script. Organizations should prioritize these updates to mitigate potential risks and ensure their systems are protected against known vulnerabilities. Continued vigilance and timely application of security patches will be essential in maintaining robust cybersecurity defenses.
