Critical Zero-Day Vulnerability in Ivanti Sentry Products

Ivanti has released security updates to address a critical zero-day vulnerability (CVE-2023-38035) in their Sentry security gateway products. The vulnerability has a common vulnerability scoring system (CVSSv3) score of 9.8 out of 10 and is reportedly being actively exploited.

Successful exploitation of the authentication bypass vulnerability could allow an unauthenticated attacker to change configuration, execute system commands, or write files onto the system.

The vulnerability affects Ivanti Sentry versions 9.18 and older.

Users and administrators of affected product versions are advised to upgrade to the latest version immediately.

More information is available here:

https://forums.ivanti.com/s/article/CVE-2023-38035-API-Authentication-Bypass-on-Sentry-Administrator-Interface?language=en_US

https://www.bleepingcomputer.com/news/security/ivanti-warns-of-new-actively-exploited-mobileiron-zero-day-bug/

https://www.darkreading.com/attacks-breaches/ivanti-issues-fix-for-critical-vuln-in-its-sentry-gateway-technology