Vulnerabilities
Vulnerable Software
CVE-2026-10520
Known exploited
An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenticated user to achieve root-level remote code execution
CVSS Score
10.0
EPSS Score
0.99
Published
2026-06-09
An Authentication Bypass vulnerability (CWE-288) in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenticated attacker to create arbitrary administrative accounts and obtain full administrative access
CVSS Score
9.9
EPSS Score
0.472
Published
2026-06-09


Contact Us

Shodan ® - All rights reserved