CVE-2026-1603: Ivanti Endpoint Manager (EPM) Authentication Bypass

Ivanti Endpoint Manager (EPM) Authentication Bypass Vulnerability. Ivanti Endpoint Manager (EPM) contains an authentication bypass using an alternate path or channel vulnerability that could allow a remote unauthenticated attacker to leak specific stored credential data.

• CISA KEV-listed (remediation due 2026-03-23)
• EPSS 58.9% (98.3% percentile)

Browse the CVE database

Read the full analysis on IntelFusions