Ivanti has released important security updates for Ivanti Endpoint Manager (EPM) and Ivanti Endpoint Manager for Mobile (EPMM), as well as Ivanti Docs@Work for Android, to address critical vulnerabilities. These vulnerabilities could potentially allow cyber threat actors to gain control over affected systems. Ivanti’s primary focus remains on delivering secure products, and the company is committed to upholding high security standards and industry best practices. The company has invested significantly in enhancing its security measures to preemptively address future threats.
The updates provided are aimed at mitigating vulnerabilities found in the mentioned products, with the goal of improving overall security for users. Ivanti has taken proactive steps by implementing comprehensive security enhancements and strengthening its vulnerability management program. This includes collaboration with the broader security ecosystem to identify, fix, and disclose vulnerabilities effectively, and ensuring transparent communication with customers about these updates.
Ivanti has confirmed that there is no evidence indicating these vulnerabilities have been exploited in the wild. Additionally, the vulnerabilities addressed by these updates do not affect any other Ivanti products or solutions. This reassures users that the updates are specifically targeted at addressing identified issues without broader implications for other Ivanti offerings.
Detailed instructions for remediation and additional information about the vulnerabilities are available in the respective security advisories for Ivanti Endpoint Manager and Ivanti Endpoint Manager for Mobile. Customers are encouraged to review these advisories to ensure that they take appropriate action to secure their systems and protect against potential threats.
