VYPR
High severity7.2CISA KEVNVD Advisory· Published May 7, 2026· Updated Jun 11, 2026

CVE-2026-6973

CVE-2026-6973

Description

An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remotely authenticated user with administrative access to achieve remote code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:ivanti:endpoint_manager_mobile:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:ivanti:endpoint_manager_mobile:*:*:*:*:*:*:*:*range: <12.6.1.1
    • cpe:2.3:a:ivanti:endpoint_manager_mobile:12.7.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ivanti:endpoint_manager_mobile:12.8.0.0:*:*:*:*:*:*:*
    • (no CPE)range: <12.6.1.1 || >=12.7.0 <12.7.0.1 || >=12.8.0 <12.8.0.1

Patches

Vulnerability mechanics

References

2

News mentions

12