{
  "metadata": {
    "generator": "Bulwark Black IOC Extractor",
    "source": "https://bulwarkblack.com/ivanti-epmm-zero-days-actively-exploited-pre-auth-rce-via-bash-arithmetic-expansion/",
    "fang": "live",
    "exported_at": "2026-07-15T22:32:11Z",
    "total": 7,
    "categories": 5
  },
  "iocs": {
    "IPv4": [
      "12.7.0.0",
      "12.8.0.0"
    ],
    "Domains": [
      "forums.ivanti.com"
    ],
    "URLs": [
      "https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340?language=en_US"
    ],
    "sha256": [
      "123aabf796106cfb2ab40cbbd43ba5b44fd937f1a5856e0a95640ba6f9d71843"
    ],
    "CVEs": [
      "CVE-2026-1281",
      "CVE-2026-1340"
    ]
  }
}