CVE-2026-10727EXPLOITEDPATCHED

ivanti · epmm

CVE-2026-10727: An OS command injection vulnerability in Ivanti EPMM before 12.9.0.1, 12.8.0.3 and 12.7.0.2 versions allows a remote aut

Description

An OS command injection vulnerability in Ivanti EPMM before 12.9.0.1, 12.8.0.3 and 12.7.0.2 versions allows a remote authenticated attacker to execute arbitrary commands as root

Affected Products

Vendor	Product	Versions
ivanti	epmm	—

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor	Product	Source	Confidence
ivanti	endpoint manager mobile	cert_advisory	90%

References

https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-6973-CVE-2026-10727?language=en_US

Related News (3 articles)

Tier B

BSI Advisories3d ago

[NEU] [mittel] Ivanti Endpoint Manager Mobile: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode

→ No new info (linked only)

Tier C

VulDB4d ago

CVE-2026-10727 | Ivanti Endpoint Manager Mobile 12.7.0.2/12.8.0.3/12.9.0.1 os command injection

→ No new info (linked only)

Tier B

CCCS Canada4d ago

Ivanti security advisory (AV26-567)

→ No new info (linked only)

CVSS 3.17.2 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

12.9.0.112.8.0.312.7.0.2

CWECWE-78

PublishedJun 9, 2026

Last enriched3d agov2

Trending Score40

Source articles3

Independent3

Info Completeness8/14

Missing: versions, epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-10520EXP

CVE-2026-10520: An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote

Trending: 100

HIGHCVE-2026-6973EXPKEV

CVE-2026-6973: An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remotely authentic

Trending: 97

CRITICALCVE-2026-10523EXP

CVE-2026-10523: An Authentication Bypass vulnerability (CWE-288) in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allow

Trending: 70

HIGHCVE-2026-9614EXP

CVE-2026-9614: An Improper Access Control vulnerability in Ivanti Neurons for ITSM (cloud and on-premises) allows a remote authenticate

Trending: 13

CRITICALCVE-2026-8043

CVE-2026-8043: External control of a file name in Ivanti Xtraction before version 2026.2 allows a remote authenticated attacker to read

Trending: 3

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Jun 9, 2026

Discovered by ZDM

Jun 9, 2026

Updated: severity, activelyExploited

Jun 9, 2026

Actively Exploited

Jun 10, 2026

Patch Available

Jun 10, 2026

Version History

Last enriched 3d ago

v2Tier C3d ago

Updated severity from HIGH to CRITICAL and noted that no exploit is available.

severityactivelyExploited

via VulDB

v14d ago

Initial creation