Summary
Ivanti Sentry gateways are being actively backdoored by attackers exploiting a maximum-severity remote code execution vulnerability (CVE-2026-10520). Security researchers warn that unpatched publicly accessible instances are likely already compromised.
Take Action:
Now this becomes urgent. If you use Ivanti Sentry, act NOW. Make sure the appliance is isolated from the internet and reachable only from trusted networks, then immediately update to fixed versions R10.5.2, R10.6.2, or R10.7.1 to patch CVE-2026-10520 and CVE-2026-10523. After updating, check your admin logs for any accounts you didn't create or unusual activity.
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)