{
  "title": "Ivanti Sentry CVE-2026-10520: KEV Pre-Auth OS Command Injection",
  "summary": "CISA and Ivanti confirmed active exploitation of CVE-2026-10520, a critical pre-authentication OS command injection vulnerability in Ivanti Sentry. Attackers can execute arbitrary commands with root privileges by sending a crafted HTTP POST request to Sentry MICS APIs.",
  "date": "2026-06-11",
  "severity": "critical",
  "tags": [
    "ivanti",
    "sentry",
    "cisa-kev",
    "rce",
    "command-injection"
  ],
  "sources_count": 5,
  "indicators": {
    "slug": "ivanti-sentry-cve-2026-10520-kev",
    "since": "2026-06-11T00:00:00Z",
    "until": "2026-06-11T23:59:59Z",
    "ecosystem": "",
    "cves": [
      "CVE-2026-10520",
      "CVE-2026-10523"
    ],
    "cwes": [
      "CWE-78"
    ],
    "advisoryIds": [],
    "products": [],
    "packages": [],
    "versions": [],
    "affectedVersions": [],
    "fixedVersions": [],
    "files": [],
    "paths": [],
    "services": [],
    "domains": [],
    "urls": [],
    "ips": [],
    "hashes": [],
    "processPatterns": [],
    "networkPatterns": [],
    "telemetrySelectors": []
  }
}