CVE-2026-8109
Published May 12, 2026
·Updated
An exposed dangerous method on the Core Server of Ivanti Endpoint Manager before version 2024 SU6 allows a remote authenticated attacker to leak access credentials.
Affected Software
10 affected components
Ivanti Ivanti Endpoint Manager Core Server<2024 SU6
Ivanti Endpoint Manager<=2022
Ivanti Endpoint Manager=2024
Ivanti Endpoint Manager=2024-su1
Ivanti Endpoint Manager=2024-su2
Ivanti Endpoint Manager=2024-su3
Ivanti Endpoint Manager=2024-su3_security_release_1
Ivanti Endpoint Manager=2024-su4
Ivanti Endpoint Manager=2024-su4_security_release_1
Ivanti Endpoint Manager=2024-su5
Event History
May 12, 2026
CVE Published
via MITRE·02:29 PM
Data Sourced
via MITRE·02:29 PM
DescriptionSeverityWeakness
Data Sourced
via NVD·03:16 PM
DescriptionSeverityWeaknessAffected Software
Frequently Asked Questions
1
What is the severity of CVE-2026-8109?
CVE-2026-8109 is considered a high severity vulnerability as it allows remote authenticated attackers to leak sensitive access credentials.
2
How do I fix CVE-2026-8109?
To fix CVE-2026-8109, upgrade Ivanti Endpoint Manager Core Server to version 2024 SU6 or a later version.
3
Which versions are affected by CVE-2026-8109?
CVE-2026-8109 affects all versions of Ivanti Endpoint Manager Core Server prior to 2024 SU6.
4
Who is vulnerable to CVE-2026-8109?
Organizations using Ivanti Endpoint Manager Core Server below version 2024 SU6 are vulnerable to CVE-2026-8109.
5
What type of attack does CVE-2026-8109 enable?
CVE-2026-8109 enables remote authenticated attackers to leak access credentials, posing a risk to system security.