labs.watchtowr.com via Reddit

Ivanti Sentry Pre-Auth RCE Scores Perfect CVSS 10

cybersecurity cybersecurity vulnerability

Key insights

  • CVE-2026-10520 scores CVSS 10.0, enabling unauthenticated attackers to execute OS commands as root via a single crafted POST request.
  • The vulnerable handleMessage endpoint passes user input to native command execution via reflection with no validation between attacker and shell.
  • A companion flaw, CVE-2026-10523, lets attackers create admin accounts without credentials; Bryan Lam is credited with that discovery.

Why this matters

Ivanti Sentry acts as an in-line gateway between enterprise mobile devices and backends like Microsoft Exchange, so a pre-auth root RCE does not just compromise a single appliance; it hands an attacker a direct path into the corporate network core. The simultaneous disclosure of CVE-2026-10520 and auth bypass CVE-2026-10523 means two independent exploitation paths exist on the same product, both requiring zero credentials, doubling the remediation surface. Security teams running MDM environments need to treat this as emergency patching, not scheduled maintenance, given the CVSS 10.0 score and Sentry's gateway-level position in enterprise network architecture.

Summary

watchTowr has detailed two critical flaws in Ivanti Sentry, an enterprise mobile gateway routing encrypted traffic to backends like Microsoft Exchange. The worse of the pair, CVE-2026-10520, scores a perfect CVSS 10.0: a crafted unauthenticated POST to the handleMessage endpoint achieves root-level code execution with zero credentials required. The mechanism is a classic injection path. A user-supplied `message` parameter is parsed and tokenized into command, module, xpath, and value components. When command equals "execute," that input flows into `handleExecute()`, which invokes native system commands via reflection with no validation in the way. Essentially: (Ivanti, watchTowr) any unpatched Sentry appliance is open to unauthenticated root takeover. - CVE-2026-10523, an authentication bypass (CWE-288) credited to Bryan Lam, separately allows unauthenticated creation of administrative accounts. - Affected versions span everything before R10.5.2, R10.6.2, and R10.7.1. - The patch replaces user-controlled input with hardcoded commands, closing the injection path. Sentry fronts enterprise mobile traffic; each unpatched instance is a direct bridge to the backend it guards.

Potential risks and opportunities

Risks

  • Enterprises running unpatched Ivanti Sentry expose Microsoft Exchange and other enterprise backends to unauthenticated root access until they reach versions R10.5.2, R10.6.2, or R10.7.1.
  • Organizations that delay patching face sharply elevated risk if a public proof-of-concept circulates, since the vulnerable handleMessage endpoint requires zero authentication to reach.
  • CVE-2026-10523 creates a secondary persistence path: attackers who create admin accounts before patching retain access even after the RCE vector is closed by the hardcoded-command fix.

Opportunities

  • Mobile security vendors (Jamf, VMware Workspace ONE) gain a concrete sales argument against in-line gateway architectures after a CVSS 10.0 Sentry flaw demonstrates the risk concentration.
  • Patch management and vulnerability prioritization vendors (Qualys, Tenable, Rapid7) can use CVE-2026-10520's perfect CVSS score to demonstrate automated patch-urgency workflows to Ivanti customers.
  • Managed security providers supporting enterprise MDM environments have an immediate upsell opportunity offering emergency patch validation and network monitoring for unpatched Sentry deployments.

What we don't know yet

  • Whether CVE-2026-10520 or CVE-2026-10523 has been observed exploited in the wild was not addressed in watchTowr's disclosure.
  • Attribution for the original discovery of CVE-2026-10520 is unstated in the article; only Bryan Lam is credited, for the companion CVE-2026-10523.
  • Which specific enterprise verticals or named Ivanti Sentry deployments have confirmed patching to R10.5.2, R10.6.2, or R10.7.1 is not known.

Originally reported by labs.watchtowr.com

Read the original article →

Original headline: watchTowr: Ivanti Sentry CVE-2026-10520 — Pre-Authenticated OS Command Injection Grants Unauthenticated Root RCE, CVSS 10/10, Patch Available