CISA has added three critical-severity flaws in Ivanti EPM to its Known Exploited Vulnerabilities catalog. The US ...

Three critical vulnerabilities in Ivanti Endpoint Manager (EPM) are currently under active exploitation in the wild, ...

Three of the four critical path traversal flaws fixed in January in Ivanti Endpoint Manager are being exploited in ...

CISA Adds Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM to KEV List | Read more hacking news ...

The US Cybersecurity and Infrastructure Security Agency (CISA) has added five new flaws in Ivanti and VeraCore products to ...

VMware was the third and final victim on GreyNoise's hit list, with the handling of critical flaws in ESXi and vCenter, which ...

Microsoft’s Patch Tuesday bundle has appeared, with a dirty dozen flaws competing for your urgent attention – six of them ...

The company learned about the flaws through its responsible disclosure program from security researchers at CISA and Akamai, and through the HackerOne bug bounty platform. Ivanti notes in the ...

The federal directive forbids vendors from shipping software with such flaws, and flags recent Microsoft, and Ivanti zero-days as examples. FBI and CISA have issued a joint advisory to warn ...

Ivanti patches four bugs found in Connect Secure, Policy Secure, and Cloud Services Applications All four could be used in RCE attacks Patches are available, and users are advised to apply them ...

In late January 2025, the US Cybersecurity and Infrastructure Security Agency (CISA) added four Ivanti vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, suggesting they were ...

The FBI and CISA described buffer overflow vulnerabilities ... A stack-based buffer overflow vulnerability in Ivanti Connect Secure and Ivanti Policy Secure, tracked as CVE-2025-0282.