Critical Zero-Day Vulnerabilities in Ivanti Endpoint Manager Mobile Actively Exploited Before Public Disclosure

Two critical zero-day vulnerabilities affect Ivanti Endpoint Manager Mobile (EPMM), which were actively exploited before their public disclosure. Limited attacks preceded a large-scale exploitation by multiple threat groups. Over 1,400 potentially vulnerable instances remain exposed on the internet. No details are provided regarding the exact dates of the attacks or patches. Technical specifics of the vulnerabilities (CVE, exploitation mechanisms) are not included in the excerpt.