Vulnerability Details CVE-2023-41724
A command injection vulnerability in Ivanti Sentry prior to 9.19.0 allows unauthenticated threat actor to execute arbitrary commands on the underlying operating system of the appliance within the same physical or logical network.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.066
EPSS Ranking 90.6%
CVSS Severity
CVSS v3 Score 9.6
Products affected by CVE-2023-41724
-
cpe:2.3:a:ivanti:standalone_sentry:-