Forwarded from the National Cybersecurity Information Sharing and Analysis Center: Cybersecurity Alert NISAC-200-202603-00000007
[Content Description]
Researchers have discovered an authentication bypass vulnerability (CVE-2026-1603) in Ivanti Endpoint Manager. An unauthenticated remote attacker could obtain specific authentication information. This vulnerability has already been exploited by hackers. Please confirm and patch it as soon as possible.
[Affected Platforms]
Ivanti Endpoint Manager 2024 SU4 SR1 and earlier versions
[Recommended Actions]
The official patch has been released. Please refer to the official instructions to update. The URL is as follows: https://hub.ivanti.com/s/article/Security-Advisory-EPM-February-2026-for-EPM-2024?language=en_US
[References]
1. https://nvd.nist.gov/vuln/detail/CVE-2026-1603
2. https://hub.ivanti.com/s/article/Security-Advisory-EPM-February-2026-for-EPM-2024?language=en_US
[Security Vulnerability Alert] Ivanti Endpoint Manager has a high-risk security vulnerability (CVE-2026-1603). Please confirm and patch it as soon as possible.
Type:行政公告
Pubish Date:2026/03/13 至 2026/09/13
Visitors:330
返回列表
