Ivanti Discloses Two Critical Remote Code Execution Vulnerabilities in Endpoint Manager Mobile
cybersecurityvulnerabilityremote_code_executionIvantiEndpoint_Manager_MobileCVEzero-daysecurity_advisory
On January 28, 2026, Ivanti released a security advisory revealing two critical vulnerabilities in Ivanti Endpoint Manager Mobile: CVE-2026-1281 and CVE-2026-1340. These flaws allow an unauthenticated attacker to execute arbitrary remote code. Technical details and precise impacts are not specified in the initial advisory.