Bleeping Computer

Ivanti warns of critical Endpoint Manager code execution flaw

American IT software company Ivanti warned customers today to patch a newly disclosed vulnerability in its Endpoint Manager (EPM) solution that could allow attackers to execute code remotely. Ivanti ...
TechRadar

These two Ivanti bugs are allowing hackers to target cloud instances - so patch now

New research points to flaws used in targets against cloud instances The flaws were previously found in on-prem attacks Ivanti released a patch so apply it now Two bugs affecting Ivanti’s Endpoint ...
Business Wire

Ivanti Announces Successful Refinancing and New Capital Infusion to Support Key Strategic Initiatives

SALT LAKE CITY--(BUSINESS WIRE)--Ivanti, an enterprise software company that provides a comprehensive IT and security cloud-based platform, announced today that it has successfully closed a ...
Yahoo Finance

Ivanti Announces Successful Refinancing and New Capital Infusion to Support Key Strategic Initiatives

Optimized Capital Structure Bolsters Ability to Invest Across Full Spectrum of IT, Network Security, and Exposure Management to Empower Customers’ Business Goals SALT LAKE CITY, May 02, ...
Infosecurity-magazine.com

Chinese State Hackers Exploiting Newly Disclosed Ivanti Flaw

A Chinese state threat actor is actively exploiting a newly disclosed critical Ivanti vulnerability, according to Mandiant researchers. The suspected espionage actor has been targeting CVE-2025-22457, ...
CSOonline

Ivanti EPM vulnerabilities actively exploited in the wild, CISA warns

Three of the four critical path traversal flaws fixed in January in Ivanti Endpoint Manager are being exploited in cyberattacks after proof-of-concept exploit code was released last month. The US ...
Computer Weekly

Mandiant: Latest Ivanti vulns exploited by Chinese cyber spooks

Security supplier Ivanti has once again found itself at the centre of an expanding series of breaches after it emerged that two freshly disclosed vulnerabilities in a number of its products are likely ...
Infosecurity-magazine.com

Critical Ivanti Zero-Day Exploited in the Wild

The UK’s National Cyber Security Centre (NCSC) and its US equivalent have urged Ivanti customers to take immediate action to mitigate two new vulnerabilities, one of which is being actively exploited.
CSOonline

Ivanti warns critical RCE flaw in Connect Secure exploited as zero-day

The software maker announced that a stack-based buffer overflow flaw in its SSL VPN appliance has been exploited in the wild. Ivanti Policy Secure and Ivanti Neurons for ZTA gateways are also impacted ...
TechRadar

Ivanti patches serious endpoint management software security bugs, so update now

Ivanti has released a patch for a critical security vulnerability, advising users to apply it immediately to secure their infrastructure. In an advisory, Ivanti said it had uncovered a deserialization ...
Business Wire

Ivanti Neurons for Patch Management Introduces Risk-Based Deployment to Tackle Growing Cyber Threats and Automate Patching Process

SALT LAKE CITY--(BUSINESS WIRE)--Ivanti, the tech company that breaks down barriers between IT and security so that Everywhere Work can thrive, announced new features for Ivanti Neurons for Patch ...
Bleeping Computer

Ivanti warns of critical vTM auth bypass with public exploit

Today, Ivanti urged customers to patch a critical authentication bypass vulnerability impacting Virtual Traffic Manager (vTM) appliances that can let attackers create rogue administrator accounts.