Is Endpoint Manager Mobile affected by CVE-2026-1281?

A critical vulnerability in Ivanti Endpoint Manager Mobile (CVE-2026-1281) allows unauthenticated attackers to execute arbitrary code remotely and is currently being actively exploited in the wild.

CVE-2026-1281

CRITICAL

2026-01-29 3c1d8aa1-5a33-4ea4-8992-aadd6440af75

9.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:00 vuln.today

Added to CISA KEV

Jan 30, 2026 - 13:28 cisa

CISA KEV

CIRCL Exploitation Confirmed

Jan 30, 2026 - 13:28 circl

CIRCL KEV

Patch Released

Jan 30, 2026 - 13:28 nvd

Patch available

CVE Published

Jan 29, 2026 - 22:15 nvd

CRITICAL 9.8

Description

A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.

Analysis

Ivanti Endpoint Manager Mobile (EPMM) contains a critical code injection vulnerability (CVE-2026-1281, CVSS 9.8) that allows unauthenticated remote attackers to execute arbitrary code. With EPSS 64.8% and KEV listing, this vulnerability in the mobile device management platform threatens the security of every managed mobile device in the organization, as EPMM has the ability to push configurations, certificates, and apps to enrolled devices.

Remediation

Within 24 hours: Inventory all Ivanti Endpoint Manager Mobile deployments and isolate affected systems from production networks if patching cannot be completed immediately. Within 7 days: Apply the vendor-supplied patch to all instances; verify patch deployment across the entire environment. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

164

Low Medium High Critical

KEV: +50

EPSS: +64.8

CVSS: +49

POC: 0

CVE-2026-1281 vulnerability details – vuln.today

Back

CVE-2026-1281

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Share

CVE-2026-1281

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code