High Threat Security Alert (A26-02-17): Multiple Vulnerabilities in Ivanti Endpoint Manager


 

Published on: 11 February 2026

Last update on: 10 March 2026

Description:

Ivanti has released security advisories to address multiple vulnerabilities in Ivanti Endpoint Manager. Detailed information about the vulnerabilities can be found at:
https://forums.ivanti.com/s/article/kA1UL0000007vmL0AQ
https://forums.ivanti.com/s/article/kA1UL0000006pe90AA

Reports indicated that a information disclosure vulnerability (CVE-2026-1603) in Ivanti Endpoint Manager is being exploited in the wild. System administrators are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.

 

Affected Systems:

  • Ivanti Endpoint Manager prior to version 2024 SU5

For detailed information of the affected systems, please refer to the corresponding security advisory at vendor's website.

 

Impact:

Successful exploitation of the vulnerabilities could lead to remote code execution, elevation of privilege, information disclosure or security restriction bypass on an affected system.

 

Recommendation:

Patches for affected systems are available. System administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://forums.ivanti.com/s/article/kA1UL0000007vmL0AQ
  • https://forums.ivanti.com/s/article/kA1UL0000006pe90AA
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9713
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11622
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11623
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62383
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62384
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62385
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62386
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62387
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62388
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62389
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62390
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62391
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62392
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1602
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1603


Tag: Ivanti , Ivanti Endpoint Manager
Tags