Security News CISA: Critical Ivanti auth bypass bug now actively exploited BleepingComputer Daniel Bender Jan 18, 2024 CISA warns that a critical authentication bypass vulnerability in Ivanti's Endpoint Manager Mobile (EPMM) and MobileIron Core device management software (patched in August 2023) is now under active exploitation.