Max severity Ivanti Sentry vulnerability now exploited in attacks

Attackers are exploiting a maximum-severity OS command injection vulnerability, CVE-2026-10520, in Ivanti Sentry gateways to execute code with root privileges. Ivanti patched the flaw on Tuesday, but Shadowserver reported the next day that most exposed instances were already backdoored. Ivanti has not updated its advisory stating no known exploitation.