Ivanti Endpoint Manager and Zoom clients security patches (multiple vulnerabilities)
Security Patch Release
Summary
Hide ▲
Show ▼
Ivanti and Zoom released patches for multiple vulnerabilities on Tuesday, addressing flaws that could enable arbitrary file writes, code execution, and privilege escalation across EMP and mobile/desktop clients. Ivanti said all EMP versions before 2024 SU4 are affected and told users to update as soon as possible. Zoom published nine advisories for three high-severity and six medium-severity issues spanning iOS, Android, Windows, Linux, and macOS. Neither vendor reported known in-the-wild exploitation.
Related Happenings
CISA emergency patch deadline for Ivanti EPMM
Public Sector Action
First: 08.05.2026 15:16
Last: 08.05.2026 15:16
Sources 1
About this happening:
CISA ordered **U.S. federal agencies** to patch **Ivanti EPMM** by **midnight Sunday, May 10** after adding **CVE-2026-6973** to its list of vulnerabilities exploited in attacks....
CISA emergency patch deadline for Ivanti EPMM
Public Sector ActionAbout this happening: CISA ordered **U.S. federal agencies** to patch **Ivanti EPMM** by **midnight Sunday, May 10** after adding **CVE-2026-6973** to its list of vulnerabilities exploited in attacks....
Ivanti EPMM patch release for CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821
Security Patch Release
First: 07.05.2026 18:20
Last: 07.05.2026 18:20
Sources 1
About this happening:
Ivanti released a security update for on-prem Endpoint Manager Mobile (EPMM) covering CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821. The patch addresses high-seve...
Ivanti EPMM patch release for CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821
Security Patch ReleaseAbout this happening: Ivanti released a security update for on-prem Endpoint Manager Mobile (EPMM) covering CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821. The patch addresses high-seve...
Latest development: 07.05.2026 20:55
Ivanti released fixes for CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821 in Endpoint Manager Mobile (EPMM). The updates apply only to on-prem EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1, and Ivanti said the issues are not present in Ivanti Neurons for MDM, Ivanti EPM, Ivanti Sentry, or other Ivanti products.
Zoom security patch release for CVE-2026-22844
Security Patch Release
First: 21.01.2026 17:42
Last: 21.01.2026 17:42
Sources 1
About this happening:
**Zoom** and **GitLab** released security updates on **2026-01-21** to fix flaws that could lead to **remote code execution**, **denial-of-service**, and **2FA bypass** across **Z...
Zoom security patch release for CVE-2026-22844
Security Patch ReleaseAbout this happening: **Zoom** and **GitLab** released security updates on **2026-01-21** to fix flaws that could lead to **remote code execution**, **denial-of-service**, and **2FA bypass** across **Z...
Ivanti security patch release for CVE-2025-13659
Security Patch Release
First: 09.12.2025 19:10
Last: 09.12.2025 19:10
Sources 1
About this happening:
**Ivanti** released **security updates** for **Endpoint Manager** to address **three high-severity vulnerabilities**, including two flaws that could enable **unauthenticated code...
Ivanti security patch release for CVE-2025-13659
Security Patch ReleaseAbout this happening: **Ivanti** released **security updates** for **Endpoint Manager** to address **three high-severity vulnerabilities**, including two flaws that could enable **unauthenticated code...
Zoom security patch release for CVE-2025-49457
Security Patch Release
First: 13.08.2025 16:19
Last: 13.08.2025 16:19
Sources 1
About this happening:
**Zoom** and **Xerox** released security updates for **Zoom Clients for Windows** and **FreeFlow Core** to fix **critical flaws** that could lead to **privilege escalation** and *...
Zoom security patch release for CVE-2025-49457
Security Patch ReleaseAbout this happening: **Zoom** and **Xerox** released security updates for **Zoom Clients for Windows** and **FreeFlow Core** to fix **critical flaws** that could lead to **privilege escalation** and *...
Timeline
-
12.11.2025 14:07 2 articles · 6mo ago
Ivanti Endpoint Manager fixes for three vulnerabilities
Mitigation Patch UpdateIvanti released fixes for three vulnerabilities in Ivanti Endpoint Manager (EMP), including CVE-2025-9713, CVE-2025-11622, and CVE-2025-10918. The affected flaws could enable unauthenticated remote code execution or local privilege escalation, and Ivanti said all EMP versions before 2024 SU4 are affected.
Show sources
- High-Severity Vulnerabilities Patched by Ivanti and Zoom — www.securityweek.com — 12.11.2025 14:07
- High-Severity Vulnerabilities Patched by Ivanti and Zoom — www.securityweek.com — 12.11.2025 14:07
-
12.11.2025 14:07 1 articles · 6mo ago
Zoom client advisories for nine vulnerabilities
Mitigation Patch UpdateZoom published nine advisories covering three high-severity and six medium-severity bugs in its mobile and desktop clients. The issues include privilege escalation flaws in Zoom's iOS and Android applications and Zoom Workplace VDI Client for Windows, information disclosure bugs in desktop applications for Linux, macOS, and Windows, and an unauthenticated XSS defect in Zoom Workplace and Meeting SDK for Windows.
Show sources
- High-Severity Vulnerabilities Patched by Ivanti and Zoom — www.securityweek.com — 12.11.2025 14:07