CVE-2026-1340
CRITICAL KEVIvanti Endpoint Manager Mobile - Code Injection
Title source: llmDescription
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.
Exploits (3)
github
WORKING POC
2 stars
by MehdiLeDeaut · pythonremote
https://github.com/MehdiLeDeaut/CVE-2026-1281-Ivanti-EPMM-RCE
vulncheck_xdb
WORKING POC
remote
https://github.com/YunfeiGE18/CVE-2026-1281-CVE-2026-1340-Ivanti-EPMM-RCE
metasploit
WORKING POC
EXCELLENT
by watchTowr, sfewer-r7 · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/ivanti_epmm_rce.rb
Scores
CVSS v3
9.8
EPSS
0.6163
EPSS Percentile
98.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CISA KEV
2026-04-08
VulnCheck KEV
2026-02-04
ENISA EUVD
EUVD-2026-4936
CWE
CWE-94
Status
published
Products (3)
Ivanti/Endpoint Manager Mobile
12.x.0.x RPM
Ivanti/Endpoint Manager Mobile
12.x.1.x RPM
ivanti/endpoint_manager_mobile
< 12.7.0.0
Published
Jan 29, 2026
KEV Added
Apr 08, 2026
Tracked Since
Feb 18, 2026