CVE-2026-5787 | THREATINT – Canadian Cyber Watch

Description

An Improper Certificate Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to impersonate registered Sentry hosts and obtain valid CA-signed client certificates.

PUBLISHED Reserved 2026-04-08 | Published 2026-05-07 | Updated 2026-05-07 | Assigner ivanti

HIGH: 8.9CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L

Problem types

CWE-295 Improper certificate validation

Product status

Default status
affected

12.8.0.1 (custom)
unaffected

12.7.0.1 (custom)
unaffected

12.6.1.1 (custom)
unaffected

References

hub.ivanti.com/…Endpoint-Manager-Mobile-EPMM-Multiple-CVEs

cve.org (CVE-2026-5787)

nvd.nist.gov (CVE-2026-5787)

Download JSON

Source link

What's Hot

ABB AC500 V3 Multiple Vulnerabilities

New Fragnesia Linux flaw lets attackers gain root privileges

OS command injection in CLI

ABB AC500 V3 Multiple Vulnerabilities

OS command injection in CLI

ZDI-26-311: Apple macOS CoreSymbolication Out-Of-Bounds Read Information Disclosure Vulnerability

Catchy & Intriguing

Defending Canada’s Digital Frontier: Combating Phishing, Social Engineering, Ransomware, and Malware

IP Address Investigations and Local OSINT

Pico 4 Review: Should You Actually Buy One Instead Of Quest 2?

A Review of the Venus Optics Argus 18mm f/0.95 MFT APO Lens

DJI Avata Review: Immersive FPV Flying For Drone Enthusiasts

Most Popular

Catchy & Intriguing

Defending Canada’s Digital Frontier: Combating Phishing, Social Engineering, Ransomware, and Malware

IP Address Investigations and Local OSINT

Our Picks

ABB AC500 V3 Multiple Vulnerabilities

New Fragnesia Linux flaw lets attackers gain root privileges

OS command injection in CLI

Subscribe to Updates

What's Hot

CVE-2026-5787 | THREATINT

Description

Problem types

Product status

References

Related Posts

Subscribe to Updates