He was commenting on an advisory issued Thursday by Ivanti concerning the discovery of 5 holes in its Endpoint Supervisor Cellular (EPMM) suite. Updates for all can be found.
The issues are severe sufficient that the US Cybersecurity and Infrastructure Safety Company (CISA) added one of many vulnerabilities to its Identified Exploited Vulnerabilities Catalog as a result of it’s being actively exploited.
“This isn’t an remoted incident,” Enderle added. “It’s a continuation of the cycle we noticed in January, suggesting an underlying structure struggling to face up to fashionable threats.”
A “very restricted variety of clients” have been exploited by way of one of many vulnerabilities revealed this week, CVE-2026-6973. An improper enter validation in EPMM earlier than variations 12.6.1.1, 12.7.0.1, and 12.8.0.1 permits a remotely authenticated person with administrative entry to carry out distant code execution.
