CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-41724

A command injection vulnerability in Ivanti Sentry prior to 9.19.0 allows unauthenticated threat actor to execute arbitrary commands on the underlying operating system of the appliance within the same physical or logical network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.066

EPSS Ranking 90.6%

CVSS Severity

CVSS v3 Score 9.6

References

https://forums.ivanti.com/s/article/CVE-2023-41724-Remote-Code-Execution-for-Ivanti-Standalone-Sentry
https://forums.ivanti.com/s/article/CVE-2023-41724-Remote-Code-Execution-for-Ivanti-Standalone-Sentry

Products affected by CVE-2023-41724

Ivanti » Standalone Sentry » Version: N/A

cpe:2.3:a:ivanti:standalone_sentry:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41724

Products

Pricing

Contact Us