~/f4n6 $ grep -r "Max severity Ivanti Sentry vulnerability now exploited in attacks" ./investigations/ --include="*.md"

Max severity Ivanti Sentry vulnerability now exploited in attacks

Jeff Davies 11 Jun 2026 5 min read

1. Executive summary

Threat actors are actively exploiting CVE-2026-10520, a maximum-severity (CVSS 10.0) OS command injection vulnerability in Ivanti Sentry secure mobile gateways, to execute code with root privileges on internet-exposed systems. While the vendor initially reported no evidence of exploitation, Shadowserver confirms that unpatched instances are being backdoored rapidly using publicly available proof-of-concept code. A secondary critical flaw, CVE-2026-10523 (CVSS 9.9), allows unauthenticated attackers to bypass authentication and create administrative accounts. EMEA financial services organizations must treat all internet-facing Ivanti Sentry instances as compromised if not patched to versions 10.5.2, 10.6.2, or 10.7.1 immediately.

2. Regulatory framing

Article Trigger (the fact in this item) Practical impact
DORA Art. 17 Active exploitation of ICT systems (Ivanti Sentry) requiring immediate containment. Mandates immediate activation of the ICT-related incident management process to contain and eradicate the threat.
DORA Art. 18 Confirmation of active exploitation and root-level compromise by Shadowserver. Requires classification of this event as a major ICT-related incident due to the severity (CVSS 10.0) and impact on confidentiality/integrity.
DORA Art. 19 Potential for major ICT-related incidents affecting financial stability or data integrity. If the compromise leads to significant data loss or service disruption, reporting to competent authorities is required within statutory timelines.
DORA Art. 24 Existence of critical vulnerabilities in core ICT infrastructure. Validates the need for digital operational resilience testing to ensure such vulnerabilities are identified before exploitation.
DORA Art. 28 Reliance on Ivanti Sentry as a third-party ICT provider for mobile gateway security. Requires application of general principles for ICT third-party risk management regarding the vendor's patching cadence and response.
NIS2 Art. 21(2)(d) Vulnerability in the supply chain (Ivanti Sentry) affecting essential services. Mandates implementation of supply chain security measures to verify the integrity of the gateway and connected backend systems.
NIS2 Art. 23 Incident involving significant disruption or data breach potential. Triggers incident reporting obligations to relevant CSIRTs if the incident meets the significance threshold.
UK NIS 2018 Compromise of systems supporting OES/RDSP operations. OES and RDSP must assess if the compromised gateway impacts their network and information systems and report accordingly.

Note: DORA Art. 29 and Art. 30 are not directly engaged by the technical specifics of this single vulnerability event but remain relevant for broader contractual and concentration risk reviews.

3. Technical analysis & attack chain

Attack Chain

  1. Reconnaissance: Attacker identifies internet-exposed Ivanti Sentry instances (formerly MobileIron Sentry).
  2. Initial Access: Attacker sends a specially crafted HTTP request to an exposed API endpoint running under Apache Tomcat.
  3. Exploitation (CVE-2026-10520): The request contains a malicious string parsed as a MICS (MobileIron Command Server) configuration command. Due to an OS command injection flaw, the backend handler executes this command with root privileges.
  4. Persistence/Backdoor: Upon successful execution, the attacker installs a backdoor on the gateway, granting persistent root-level access.
  5. Lateral Movement/Impact: The compromised gateway serves as a pivot point to access back-end corporate systems and steal sensitive customer/corporate data.

Technical Specifics

  • Vulnerable Product: Ivanti Sentry (Secure Mobile Gateway).
  • Vulnerable Versions: All versions prior to R10.5.2, R10.6.2, and R10.7.1.
  • CVE-2026-10520:
    • Severity: CVSS 10.0 (Maximum).
    • Mechanism: OS Command Injection via an exposed API.
    • Component: Apache Tomcat hosting the API; backend handler processing MICS configuration commands.
    • Privilege: Root.
    • Authentication: Not required (Unauthenticated).
  • CVE-2026-10523:
    • Severity: CVSS 9.9.
    • Mechanism: Authentication Bypass.
    • Impact: Allows remote, unauthenticated attackers to create new administrative accounts.
  • Exploitation Status: Shadowserver reports active exploitation and backdooring of exposed instances using public PoC code. Ivanti's initial advisory stated no known exploitation, but this has been superseded by field observations.

Attribution

No specific threat actor group has been definitively attributed to these attacks in the provided sources. While Shadowserver noted tips from Saudi NCA regarding backdoored instances, this does not confirm the Saudi NCA as the attacker; they may be the victim or the reporting entity. Attribution remains unconfirmed.

4. Mitigation & containment

Priority 1 (Immediate - <24h)

  • Patch: Upgrade Ivanti Sentry to fixed versions R10.5.2, R10.6.2, or R10.7.1 immediately.
  • Isolate: If immediate patching is impossible, disconnect the Ivanti Sentry appliance from the internet and internal networks to prevent lateral movement.
  • Assume Compromise: For any internet-facing Sentry instance not yet patched, assume root-level compromise. Initiate incident response procedures (forensic imaging, credential rotation for backend systems accessible via the gateway).

Priority 2 (Short Term - <72h)

  • Audit: Scan internal networks for unauthorized administrative accounts created via CVE-2026-10523.
  • Verify: Check Apache Tomcat logs and MICS command logs for anomalous entries corresponding to the exploitation window.
  • Restrict: Implement strict network segmentation to limit the Sentry gateway's access to only essential backend services.

Priority 3 (Medium Term - <7 days)

  • Review: Conduct a full review of third-party risk management policies (DORA Art. 28) regarding Ivanti and similar critical infrastructure providers.
  • Test: Perform digital operational resilience testing (DORA Art. 24) simulating this specific attack vector to validate detection capabilities.

5. Indicators of compromise

No specific file hashes, domains, or IP addresses were provided in the source material. The primary indicator is the presence of unpatched Ivanti Sentry versions exposed to the internet.

No indicators of compromise available in the source material.

6. Detection

YARA Rule

The sources describe the mechanism (MICS command injection via Apache Tomcat) but do not provide specific static strings, file names, or binary signatures suitable for a reliable YARA rule without fabrication. Insufficient indicators to author detection rules.

Sigma Rule

The sources mention "MICS configuration command" execution and "Apache Tomcat" involvement but do not provide specific log patterns, command-line arguments, or event IDs required to construct a precise Sigma rule. Insufficient indicators to author detection rules.

Recommendation: Defenders should monitor web server logs (Apache Tomcat) for unexpected POST requests to API endpoints containing command-like structures or MICS-related keywords, and audit system logs for sudden creation of admin users.

7. Sources

  • BleepingComputer, "Max severity Ivanti Sentry vulnerability now exploited in attacks", https://www.bleepingcomputer.com/news/security/max-severity-ivanti-sentry-vulnerability-now-exploited-in-attacks/, 2026-06-11.
  • BleepingComputer, "Ivanti: Max severity Sentry flaw allows code execution as root", https://www.bleepingcomputer.com/news/security/new-max-severity-ivanti-sentry-flaw-allows-code-execution-as-root/.
  • Help Net Security, "Critical Ivanti Sentry flaw allows root-level remote code execution (CVE-2026-10520)", https://www.helpnetsecurity.com/2026/06/10/ivanti-sentry-cve-2026-10520-cve-2026-10523/, 2026-06-10.
  • The Register, "Ivanti tells Sentry customers to patch now as critical bugs hit 10.0 and 9.9", https://www.theregister.com/patches/2026/06/10/ivanti-urges-sentry-users-to-patch-two-critical-bugs/5253428, 2026-06-10.
  • BSI Germany, "[NEU] [hoch] Ivanti Sentry: Mehrere Schwachstellen", https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1841.
  • ANSSI France CERT, "Multiples vulnérabilités dans les produits Ivanti (10 juin 2026)", https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0724/, 2026-06-10.

8. Adverse Trace position

Adverse Trace assesses this item as Critical. The combination of a CVSS 10.0 rating, unauthenticated remote code execution as root, and confirmed active exploitation in the wild creates an immediate existential threat to any exposed Ivanti Sentry infrastructure. The discrepancy between the vendor's initial "no known exploitation" statement and Shadowserver's confirmation of widespread backdooring indicates a rapidly closing window for defensive action. We advise clients to bypass standard change management windows for this specific patch and to initiate incident response protocols for any system that was internet-accessible and unpatched as of June 11, 2026. Continued monitoring of CISA KEV listings is recommended, though current field data suggests exploitation is already pervasive.

Read the original source →

Published via PulseTrace — Adverse Trace threat intelligence.

Post this to LinkedIn
Formatting is converted automatically — headings, bullets, a link back & hashtags. Paste straight in.
J
Jeff Davies