Ptechhub
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs
No Result
View All Result
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs
No Result
View All Result
PtechHub
No Result
View All Result

Ivanti: ‘Critical’ Mobile Management Vulnerabilities Seeing Exploitation

CRN by CRN
January 30, 2026
Home News
Share on FacebookShare on Twitter


A pair of flaws affecting Ivanti’s Endpoint Manager Mobile have been exploited in attacks impacting a ‘very limited’ number of customers, the company says.

A pair of critical-severity vulnerabilities affecting an Ivanti mobile management tool have been exploited in cyberattacks, according to the company.

The flaws—tracked at CVE-2026-1281 and CVE-2026-1340—affect Ivanti’s Endpoint Manager Mobile and have been exploited in attacks impacting a “very limited” number of customers, Ivanti said in an advisory Thursday.

[Related: 10 Major Cyberattacks And Data Breaches In 2025]

Patches are available to address the vulnerabilities, Ivanti said.

“No downtime is required to apply this patch, and we are not aware of any feature functionality impact with this patch,” the company said.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released its own advisory Thursday confirming that at least one of the vulnerabilities (CVE-2026-1281) has been exploited by threat actors.

“This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise,” CISA said in the advisory.

Both vulnerabilities have a “critical” severity score of 9.8 out of 10.0.

In its advisory, Ivanti said the code injection vulnerabilities can be exploited to enable remote execution of code without authentication.

“We are aware of a very limited number of customers who have been exploited at the time of disclosure,” the company said in its advisory.

CRN has reached out to Ivanti for further comment.

CISA ordered federal agencies to implement patches for the Ivanti vulnerabilities by Feb. 1.

While the order only applies to Federal Civilian Executive Branch agencies, CISA “strongly urges” all impacted organizations to prioritize remediation of exploited vulnerabilities such as these, the agency said.



Source link

Tags: CyberattacksCybersecurityVulnerabilities
CRN

CRN

Next Post
Everything you need to know about Kevin Warsh, Trump’s pick to lead the Federal Reserve

Everything you need to know about Kevin Warsh, Trump's pick to lead the Federal Reserve

Recommended.

‘Sage Future’ Features New Workflow AI Agents, Expanded Development Capabilities

‘Sage Future’ Features New Workflow AI Agents, Expanded Development Capabilities

April 29, 2026
ACI Wins Multi-Year Caterpillar Engagement as Strategic Technology Transformation Partner

ACI Wins Multi-Year Caterpillar Engagement as Strategic Technology Transformation Partner

February 3, 2026

Trending.

CELLCOM ISRAEL LTD. Announcement of A Special General Meeting of The Shareholders of The Company

CELLCOM ISRAEL LTD. Announcement of A Special General Meeting of The Shareholders of The Company

May 21, 2025
Veeam Debuts Data Resiliency Maturity Model To Assess, Improve Customers’ Cyber Resiliency

Veeam Debuts Data Resiliency Maturity Model To Assess, Improve Customers’ Cyber Resiliency

April 23, 2025
MocPOGO Easter Special Deals: The Pokémon GO Spoofer You Need for Might and Mastery 2025!

MocPOGO Easter Special Deals: The Pokémon GO Spoofer You Need for Might and Mastery 2025!

April 7, 2025
VNET Wins 40MW Wholesale Order from Leading Internet Company for Its New Strategic IDC Campus

VNET Wins 40MW Wholesale Order from Leading Internet Company for Its New Strategic IDC Campus

September 11, 2025
Insurance Modernization at Risk as Workforce Strategies Fall Behind, Says Info-Tech Research Group

Insurance Modernization at Risk as Workforce Strategies Fall Behind, Says Info-Tech Research Group

May 8, 2026

PTechHub

A tech news platform delivering fresh perspectives, critical insights, and in-depth reporting — beyond the buzz. We cover innovation, policy, and digital culture with clarity, independence, and a sharp editorial edge.

Follow Us

Industries

  • AI & ML
  • Cybersecurity
  • Enterprise IT
  • Finance
  • Telco

Navigation

  • About
  • Advertise
  • Privacy & Policy
  • Contact

Subscribe to Our Newsletter

  • About
  • Advertise
  • Privacy & Policy
  • Contact

Copyright © 2025 | Powered By Porpholio

No Result
View All Result
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs

Copyright © 2025 | Powered By Porpholio