At Ivanti, our top priority is upholding our commitment to deliver and maintain secure products for our customers. We invest significant resources to ensure that all our solutions continue to meet our own high standards and industry best practices.  In April, we announced important security enhancements that will better enable us to anticipate, prevent, and protect against future threats. This commitment includes improvements to our vulnerability management program to enable us to find, fix and disclose vulnerabilities in collaboration with the broader security ecosystem, and communicate responsibly and transparently with customers. 

Today, fixes have been released for the following solutions: Ivanti Avalanche, Ivanti Endpoint Manager (EPM), Ivanti Connect Secure, Ivanti Neurons for ITSM and Ivanti Secure Access.

It is important for customers to know:

  • We have no evidence of these vulnerabilities being exploited in the wild.
  • These vulnerabilities do not impact any other Ivanti products or solutions.

More information on these vulnerabilities and detailed instructions on how to remediate the issues can be found in this Security Advisory. A security disclosure was also made on 15 May for Ivanti EPMM.

We are also working to simplify the disclosure process for vulnerabilities that have been discovered internally or reported responsibly by members of the security community and are not being exploited in the wild – including consolidating the day we disclose vulnerabilities that have been found to allow customers to anticipate patching.

Our Support team is always available to help customers and partners should they have any questions. Cases can be logged via the Success portal (login credentials required).

Want to stay up to date on Ivanti Security Advisories? Paste https://www.ivanti.com/blog/topics/security-advisory/rss into your preferred RSS reader / functionality in your email program.