CVE Watchtower β Back to CVE ListCVE-2026-1603NVDDescriptionAn authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthenticated attacker to leak specific stored credential data.Severity LevelHIGH (8.6)Published Date10/02/2026Last Modified10/03/2026Exploitation Status????Referenceshttps://hub.ivanti.com/s/article/Security-Advisory-EPM-February-2026-for-EPM-2024?language=en_UShttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-1603