CVE-2026-1281

A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.

Basic Information

CVE State: PUBLISHED
Reserved Date: January 21, 2026
Published Date: January 29, 2026
Last Updated: February 26, 2026
Vendor: Ivanti
Product: Endpoint Manager Mobile
Description: A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.
Tags

CVSS Scores

CVSS v3.1

9.8 - CRITICAL

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC Information

Exploitation: active
Automatable: Yes
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (2026-06-01 10:50:03 UTC) Source

References

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340

Known Exploited Vulnerability Information

Source	Added Date
CVE	2026-06-01 10:50:03 UTC

Timeline

CVE ID Reserved

January 21, 2026
CVE Published to Public

January 29, 2026
Added to KEVIntel

June 01, 2026