CISA added Ivanti Endpoint Manager Mobile CVE-2026-6973 to its Known Exploited Vulnerabilities catalog on May 7, with a federal patch deadline of May 10. Even if you do not run EPMM, here is what the incident says about your own endpoint management stack – and seven questions to ask this week.
When Your MDM Server Becomes The Front Door: Operational Lessons From The Ivanti EPMM Zero-Day (CVE-2026-6973)
Chrome on Windows Just Shipped Two Local Privilege Escalation Fixes: What CVE-2026-7948 and CVE-2026-7994 Mean For Your Endpoints
Endpoint Privilege Management Lands in Your E5 License on July 1: A Practical Plan to Retire Local Admin