CVE-2026-5787
Ivanti EPMM on-prem improper certificate validation → pre-auth Sentry impersonation (CVSS 9.1, ITW, KEV chain)
First seen
2026-05-08
Last seen
2026-05-08
Appearances
1
External references
All cited sources for this CVE (4)
- nvd.nist.govprimaryNVD — CVE-2026-5787https://nvd.nist.gov/vuln/detail/CVE-2026-5787
- nvd.nist.govprimaryNVD — CVE-2026-6973https://nvd.nist.gov/vuln/detail/CVE-2026-6973
- ivanti.comIvanti — May 2026 EPMM Security Updatehttps://www.ivanti.com/blog/may-2026-epmm-security-update
- thehackernews.comThe Hacker News — Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitationhttps://thehackernews.com/2026/05/ivanti-epmm-cve-2026-6973-rce-under.html
Brief appearances
- CTI Daily Brief — 2026-05-082026-05-08