Ivanti Patches Multiple Vulnerabilities in Endpoint Manager, Including Critical Remote Authentication Bypass

Ivanti has fixed more than a dozen vulnerabilities in its Endpoint Manager software, including a critical remote authentication bypass flaw (CVE-2026-1603, CVSS score 8.6). These patches address vulnerabilities disclosed in October 2025. The CVE-2026-1603 vulnerability allowed attackers to steal credentials remotely. No active exploitation is mentioned in the article.