These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-6973 is an Ivanti Endpoint Manager Mobile (EPMM) vulnerability described as improper input validation. CISA added it to the Known Exploited Vulnerabilities catalog on 2026-05-07, which means it is treated as a known-exploited issue and should be addressed urgently. The supplied corpus does not include deeper technical detail or a CVSS score, so defensive response should focus on confirming exposu [truncated]
CVE-2025-22457 affects Ivanti Connect Secure, Policy Secure, and ZTA Gateways and is described as a stack-based buffer overflow vulnerability. CISA added it to the Known Exploited Vulnerabilities catalog on 2025-04-04, which indicates confirmed real-world exploitation. CISA also marks the issue as having known ransomware campaign use, so exposed Ivanti gateway deployments should be treated as urgent remed [truncated]
CVE-2024-13160 is a vendor-identified absolute path traversal issue in Ivanti Endpoint Manager (EPM) that CISA added to the Known Exploited Vulnerabilities catalog on 2025-03-10. Because CISA classifies it as known exploited, this should be treated as an urgent remediation item. The supplied corpus directs defenders to apply vendor mitigations per Ivanti's instructions, and to discontinue use of the produ [truncated]
CVE-2024-13159 is an Ivanti Endpoint Manager (EPM) absolute path traversal vulnerability. CISA added the issue to its Known Exploited Vulnerabilities (KEV) catalog on 2025-03-10, which means defenders should treat it as a high-priority remediation item. The public sources provided here do not include a CVSS score, and the most actionable guidance is to follow vendor mitigation instructions and, where appl [truncated]
CVE-2025-0282 is a publicly listed Ivanti vulnerability affecting Connect Secure, Policy Secure, and ZTA Gateways. The supplied corpus identifies it as a stack-based buffer overflow and shows that CISA added it to the Known Exploited Vulnerabilities catalog on 2025-01-08, with a remediation due date of 2025-01-15. Because it is in KEV and marked as known ransomware campaign use, defenders should treat it [truncated]
CVE-2024-9380 affects Ivanti Cloud Services Appliance (CSA) and is described as an OS command injection vulnerability. CISA added it to the Known Exploited Vulnerabilities catalog on 2024-10-09, so defenders should treat it as a known-exploited issue and prioritize remediation. CISA’s KEV entry also says CSA 4.6.x has reached end-of-life status and should be removed from service or upgraded to the 5.0.x l [truncated]
CVE-2024-9379 affects Ivanti Cloud Services Appliance (CSA) and is listed by CISA as a known exploited vulnerability. CISA added it to the KEV catalog on 2024-10-09 and set a remediation due date of 2024-10-30. For CSA 4.6.x, CISA's required action is to remove it from service or upgrade to the 5.0.x line or later.
CVE-2021-44529 is a code injection vulnerability affecting Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA). CISA added it to the Known Exploited Vulnerabilities (KEV) catalog on 2024-03-25, set a remediation due date of 2024-04-15, and marked the entry as having known ransomware campaign use. From a defensive standpoint, that makes this a high-priority remediation item for any organization runni [truncated]
