Ivanti Endpoint Manager Mobile is a unified endpoint management solution that enables organizations to manage and secure their mobile devices, laptops, and desktops from a single console. It streamlines device provisioning, provides extensive security controls, and enables simplified device management. The solution helps businesses gain increased visibility and control across their IT infrastructure, optimize IT processes, and improve end-user experiences.

Ivanti Endpoint Manager Mobile

A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-1340	CRITICAL	9.8	Ivanti Endpoint Manager Mobile	cpe:2.3:a:ivanti:endpoint_manager_mobile	No	Yes	Jan 29, 2026
CVE-2026-1281	CRITICAL	9.8	Ivanti Endpoint Manager Mobile	cpe:2.3:a:ivanti:endpoint_manager_mobile	Yes	Yes	Jan 29, 2026
CVE-2025-10985	HIGH	7.2	Ivanti Endpoint Manager Mobile	cpe:2.3:a:ivanti:endpoint_manager_mobile	No	Yes	Oct 14, 2025
CVE-2025-10243	HIGH	7.2	Ivanti Endpoint Manager Mobile	cpe:2.3:a:ivanti:endpoint_manager_mobile	No	Yes	Oct 14, 2025
CVE-2025-10986	MEDIUM	5.5	Ivanti Endpoint Manager Mobile	cpe:2.3:a:ivanti:endpoint_manager_mobile	No	Yes	Oct 14, 2025

CVE-2026-1340:
Ivanti Endpoint Manager Mobile vulnerability analysis and mitigation

9.8

Related Ivanti Endpoint Manager Mobile vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2026-1340: Ivanti Endpoint Manager Mobile vulnerability analysis and mitigation