Max severity Ivanti Sentry vulnerability now exploited in attacks
Summary
A maximum-severity vulnerability in Ivanti Sentry, allowing for root privilege code execution on internet-exposed secure mobile gateways, is now actively being exploited by attackers. This flaw enables unauthorized access and control over compromised devices.
IFF Assessment
The active exploitation of a critical vulnerability that allows for root privilege code execution poses a direct threat to organizations using the affected Ivanti Sentry product.
Severity
The vulnerability allows for remote code execution with root privileges on internet-exposed devices, representing the highest possible impact and exploitability.
Defender Context
This active exploitation highlights the critical need for organizations to immediately patch Ivanti Sentry instances and monitor for any signs of compromise. Attackers can gain significant control over devices, potentially leading to further network intrusion or data exfiltration.