Ivanti Endpoint Manager Mobile (EPMM) 12.7.0.0
Approved changes feed: RSS · Atom
cpe:2.3:a:ivanti:endpoint_manager_mobile:12.7.0.0:*:*:*:*:*:*:*
part: a version: 12.7.0.0 update: *
| Vendor | Ivanti (40b984ad-e54c-5e1b-9aa1-2a4cd4d61129) |
|---|---|
| Product | Endpoint Manager Mobile (5c3e8d67-b131-5147-ae24-5a405b176faa) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-7821 |
vulnerable | 2026-06-03 15:27:57.307445 |
Details available
HIGH (7.4)
Improper certificate validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to enroll a device belonging to a restricted set of unenrolled devices, leading to information disclosure about EPMM appliance and impacting on the integrity of the newly enrolled device identity.
Published: 2026-05-07T15:26:44.176Z
Updated: 2026-05-07T16:15:57.184Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-6973 |
vulnerable | 2026-06-03 15:27:55.947581 |
Details available
HIGH (7.2)
An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remotely authenticated user with administrative access to achieve remote code execution.
Published: 2026-05-07T15:21:24.849Z
Updated: 2026-05-08T03:55:38.232Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-5788 |
vulnerable | 2026-06-03 15:26:27.619261 |
Details available
HIGH (7)
An Improper Access Control in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to invoke arbitrary methods.
Published: 2026-05-07T15:29:49.630Z
Updated: 2026-05-07T16:16:36.899Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-5787 |
vulnerable | 2026-06-03 15:26:27.618757 |
Details available
HIGH (8.9)
An Improper Certificate Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to impersonate registered Sentry hosts and obtain valid CA-signed client certificates.
Published: 2026-05-07T15:36:41.179Z
Updated: 2026-05-08T03:55:49.014Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-5786 |
vulnerable | 2026-06-03 15:26:27.616058 |
Details available
HIGH (8.8)
An Improper Access Control vulnerability in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote authenticated attacker to gain administrative access.
Published: 2026-05-07T15:18:54.437Z
Updated: 2026-05-08T03:55:39.897Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-1281 |
vulnerable | 2026-06-03 15:14:44.089847 |
Details available
CRITICAL (9.8)
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.
Published: 2026-01-29T21:31:17.041Z
Updated: 2026-02-26T15:04:43.985Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.