CNNVD-202601-4863 Information

CNNVD ID

CNNVD-202601-4863

Related CVE

CVE-2026-1340

• CNNVD Published: 2026-01-29

Description (Chinese)

Ivanti Endpoint Manager Mobile（Ivanti EPMM）是美国Ivanti公司的一个移动管理软件引擎。 Ivanti Endpoint Manager Mobile存在代码注入漏洞，该漏洞源于代码注入，可能导致未经身份验证的远程代码执行。

Description (English)

Ivanti Endpoint Manager Mobile (Ivanti EPM) is a mobile management software engine for Ivanti in the United States. Ivanti Endpoint Manager Mobile has a code-injection loophole, which originates from a code-injection and may lead to remote code execution without authentication.

Hazard Level

Low

Vulnerability Type

代码注入

Affected Vendor

Ivanti

Published

2026-01-29

Last Modified

2026-02-24

References

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340 https://access.redhat.com/security/cve/cve-2026-1340

Patch

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340?language=en_US