Ivanti – TheCyberThrone

CISA adds CVE-2026-6973 | Ivanti EPMM Authenticated RCE to KEV Catalog

Overview CISA has added CVE-2026-6973 to the Known Exploited Vulnerabilities catalog, giving federal civilian agencies until May 10, 2026 to remediate the flaw. The vulnerability is an improper input validation…

PravinKarthik May 10, 2026

CISA KEV Catalog Update – March 9 2026

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog today, based on evidence of active exploitation CVE-2026-1603 — Ivanti Endpoint Manager (EPM) Authentication Bypass Tracked as…

PravinKarthik March 10, 2026

CISA Adds Six Vulnerabilities to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog, adding six newly identified vulnerabilities that pose significant threats to organizations and government agencies. These…

PravinKarthik May 20, 2025

Year 2024

Zeroday Vulnerabilities Prevailed in 2024 Analysis-Part II

This is the continuation of Zeroday vulnerabilities in 2024. Let's delve deeply into the continuation of zero-day vulnerabilities of 2024, providing a comprehensive analysis. Ivanti Zeroday vulnerabilities 1. CVE-2023-46805: Authentication…

PravinKarthik December 24, 2024

Year 2024

Most Exploited Vulnerabilities in 2024 Top 20 Analysis

In 2024, the cybersecurity landscape saw a significant number of exploited vulnerabilities, highlighting the ongoing challenges organizations face in protecting their systems and data. Some key trends and challenges include:…

PravinKarthik December 22, 2024

CISA adds Ivanti CVE-2024-7593 to its KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Ivanti Virtual Traffic Manager authentication bypass vulnerability CVE-2024-7593 with a CVSS score 9.8 to its Known Exploited Vulnerabilities (KEV) catalog. Back…

PravinKarthik September 25, 2024

CISA adds Ivanti Bug CVE-2024-8190 to its Catalog

The US CISA added Ivanti vulnerability tracked as CVE-2024-8190 to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation The vulnerability affects Ivanti Cloud Services Appliance (CSA)…

PravinKarthik September 14, 2024

Ivanti fixes critical vulnerability in EPM -CVE-2024-29847

Ivanti fixed a critical vulnerability in its Endpoint Management software (EPM) that can let attackers achieve remote code execution on the core server The vulnerability tracked as CVE-2024-29847 with a…

PravinKarthik September 12, 2024