【Vulnerability Alert】High-Risk Security Vulnerability in Ivanti Xtraction (CVE-2026-8043)

Posting Date: 2026/05/15

Subject: 【Vulnerability Alert】High-Risk Security Vulnerability in Ivanti Xtraction (CVE-2026-8043)

Description:
- Forwarded from Taiwan Computer Emergency Response Team / Coordination Center Security Advisory TWCERTCC-200-202605-00000007
- Ivanti Xtraction is an IT reporting and data visualization platform that integrates data from different IT systems into a single dashboard for real-time viewing and analysis. Ivanti recently released a critical security vulnerability advisory (CVE-2026-8043, CVSS: 9.6). This vulnerability allows an authenticated attacker to read sensitive files and write arbitrary HTML files into the website directory.
Affected Platforms:
- Ivanti Xtraction versions 2026.1 (inclusive) and earlier
Recommended Actions:
- Please update to Ivanti Xtraction version 2026.2 (inclusive) or later

Computer and Communication Center
Network Systems Division