Security News > 2025 > May > Ivanti fixes EPMM zero-days chained in code execution attacks

Ivanti fixes EPMM zero-days chained in code execution attacks

2025-05-13 18:26

Ivanti warned customers today to patch their Ivanti Endpoint Manager Mobile (EPMM) software against two security vulnerabilities chained in attacks to gain remote code execution. [...]

News URL

https://www.bleepingcomputer.com/news/security/ivanti-fixes-epmm-zero-days-chained-in-code-execution-attacks/

#attack #codeexecution #ivanti #zeroday

Related news

DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks (source)
Ivanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks (source)
Ivanti patches two zero-days under active attack as intel agency warns customers (source)
Apple fixes two zero-days exploited in targeted iPhone attacks (source)
Apple plugs zero-day holes used in targeted iPhone attacks (CVE-2025-31200, CVE-2025-31201) (source)
Apple Patches Two Zero-Days Used in ‘Extremely Sophisticated’ Attacks (source)
Phishing detection is broken: Why most attacks feel like a zero day (source)
SAP fixes suspected Netweaver zero-day exploited in attacks (source)
More Ivanti attacks may be on horizon, say experts who are seeing 9x surge in endpoint scans (source)
Craft CMS RCE exploit chain used in zero-day attacks to steal data (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Ivanti		29	1	62	215	85	363

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.