EPMM

vulnerabilities January 30, 2026 · 5 min read

Ivanti EPMM Zero-Days Chained for Unauthenticated RCE Against NATO-Allied Government

CVE-2026-1281 and CVE-2026-1340 give attackers full remote code execution on Ivanti mobile device management servers. Already exploited in the wild.