What is the CVSS score of CVE-2026-7821?

CVE-2026-7821 has a CVSS 3.1 base score of 7.4 (High). CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N. EPSS exploitation probability: 0.0%.

Which versions of Ivanti EPMM are affected by CVE-2026-7821?

Ivanti Endpoint Manager Mobile (EPMM) contains a certificate validation flaw allowing unauthenticated remote attackers to enroll unauthorized devices and access appliance configuration, directly…

Ivanti EPMM CVE-2026-7821

EUVD-2026-28397 HIGH

Improper Certificate Validation (CWE-295)

2026-05-07 3c1d8aa1-5a33-4ea4-8992-aadd6440af75

GHSA-pr5j-p9p7-3c46

Information Disclosure Ivanti

7.4

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

Analysis Generated

May 07, 2026 - 16:31 vuln.today

CVE Published

May 07, 2026 - 16:16 nvd

HIGH 7.4

DescriptionNVD

Improper certificate validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to enroll a device belonging to a restricted set of unenrolled devices, leading to information disclosure about EPMM appliance and impacting on the integrity of the newly enrolled device identity.

AnalysisAI

Improper certificate validation in Ivanti Endpoint Manager Mobile (EPMM) enables remote unauthenticated attackers to enroll restricted devices without authorization, exposing appliance configuration details and compromising enrolled device identity integrity. Affects EPMM versions prior to 12.6.1.1, 12.7.0.1, and 12.8.0.1. …

RemediationAI

Within 24 hours: Inventory all EPMM deployments and confirm installed versions against affected ranges (pre-12.6.1.1, pre-12.7.0.1, pre-12.8.0.1); isolate any critical EPMM instances if patch verification is incomplete. Within 7 days: Apply vendor patch to upgrade EPMM to version 12.6.1.1, 12.7.0.1, or 12.8.0.1 or later; validate patch deployment across all instances. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory