Critical Exploitation Alert: Ivanti Sentry Targeted via Command Injection and Auth Bypass

The cybersecurity landscape has shifted rapidly following the release of proof-of-concept (PoC) code targeting Ivanti Sentry. Security researchers and threat intelligence providers are reporting active exploitation attempts leveraging a critical OS command injection vulnerability, tracked as CVE-2026-10520.

While Ivanti’s initial security advisory disclosed on June 9, 2026, suggested no evidence of active exploitation, the reality on the ground moved much faster. Threat intelligence from the Shadowserver Foundation indicates that attackers successfully weaponized the public PoC almost immediately, initiating widespread scanning and compromise attempts against exposed gateway instances.

Technical Deep Dive: The Vulnerability Chain

The threat profile is compounded by two distinct but highly synergistic vulnerabilities that, when chained together, offer an attacker a complete path to enterprise takeover.

1. Remote OS Command Injection (CVE-2026-10520)

This vulnerability is classified under CWE-78 and carries a maximum CVSS score of 10.0. It allows a remote, unauthenticated attacker to inject arbitrary commands into the underlying operating system. Because these commands are executed with root-level privileges, the impact is catastrophic: full system compromise, the ability to deploy persistent backdoors, and a pivot point for lateral movement into the internal corporate network.

This flaw impacts all Ivanti Sentry versions prior to 10.5.2, 10.6.2, and 10.7.1. Its unauthenticated nature makes it an ideal target for automated botnets and opportunistic actors.

2. Authentication Bypass (CVE-2026-10523)

The second critical flaw, CVE-2026-10523, is an authentication bypass (CWE-288) with a CVSS score of 9.9. This allows an attacker to circumvent standard login protocols to create arbitrary administrative accounts. When paired with the command injection flaw, an attacker can not only execute code but also establish “legitimate” administrative persistence that is much harder to detect through traditional means.

Observed Exploitation in the Wild

The speed of the exploitation lifecycle has been alarmingly short. Shadowserver’s telemetry confirms that internet-wide scans identified at least 19 vulnerable instances, with at least two confirmed to have been backdoored shortly after the PoC went live.

“We are observing a large amount of Ivanti Sentry CVE-2026-10520 exploitation attempts based on the public PoC today. We see 19 vulnerable instances in our own scans, with at least 2 backdoored… However, all remaining likely compromised too.” — The Shadowserver Foundation

Security experts warn that for any organization identifying an exposed instance, there is a high statistical probability that the system has already been compromised.

Remediation and Incident Response Strategy

If your organization utilizes Ivanti Sentry as a mobile or email traffic gateway, immediate action is required. Patching is the first step, but it is not a complete solution for already-compromised environments.

Immediate Defensive Actions:

• Update Immediately: Upgrade to Ivanti Sentry versions 10.5.2, 10.6.2, or 10.7.1 (or higher) via the official Ivanti download portal.
• Restrict Exposure: If possible, restrict external access to the Sentry management interface using ACLs or VPNs to reduce the attack surface.
• Conduct a Compromise Assessment: Do not assume a patched system is a clean system. Security teams must perform deep forensic audits, including:
  • Reviewing system and application logs for unusual command execution.
  • Auditing administrative accounts for unauthorized additions.
  • Scanning for web shells, modified configuration files, or unexpected outbound network connections.

This incident serves as a stark reminder of the risks associated with internet-facing edge appliances. In the era of rapid PoC weaponization, the window between disclosure and exploitation is shrinking to nearly zero.