AdvisoriesCVE-2026-1340

Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability

IvantiEndpoint Manager Mobile (EPMM)Added April 8, 2026

CISA Known Exploited Vulnerabilities Data

Description

Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution.

Required Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CISA Due Date

April 11, 2026 (federal agency requirement)

Known Ransomware Campaign Use

Unknown

Notes

Please adhere to Ivanti's guidelines to assess exposure and mitigate risks. Check for signs of potential compromise on all internet accessible Ivanti products affected by this vulnerability. Apply any final mitigations provided by the vendor as soon as possible. For more information please see: https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340?language=en_US ; https://support.mobileiron.com/mi/vsp/AB1786671/ivanti-security-update-1761642-1.1.0S-5.noarch.rpm ; https://support.mobileiron.com/mi/vsp/AB1786671/ivanti-security-update-1761642-1.1.0L-5.noarch.rpm ; https://nvd.nist.gov/vuln/detail/CVE-2026-1340

External References

View on CISA KEV View CVE-2026-1340 on NVD Search MITRE ATT&CK

Concerned about this vulnerability in your environment?

Our team can assess your exposure and help you remediate.

Talk to Our Team

Data sourced from the CISA Known Exploited Vulnerabilities catalog. CISA does not endorse any commercial product or service.