https://vulnerability.circl.lu/sightings/feed 2026-06-10T11:42:18.340680+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/3402cef9-aa51-41ec-aad2-3ec5d225e0f3/export 2026-06-10T11:42:18.346962+00:00 Alexandre Dulaunoy https://vulnerability.circl.lu/user/adulau {"uuid": "3402cef9-aa51-41ec-aad2-3ec5d225e0f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/536dbd2e-9793-4c4b-bc54-a21fd7e60e65", "content": "", "creation_timestamp": "2026-06-10T04:44:07.374229Z"} 2026-06-10T04:44:07.374229+00:00 https://vulnerability.circl.lu/sighting/116fc7a3-9a7c-4b5a-96aa-4b6ca598e084/export 2026-06-10T11:42:18.346886+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "116fc7a3-9a7c-4b5a-96aa-4b6ca598e084", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnw4exs6dr2l", "content": "Ivanti patched two critical Sentry flaws, including CVE-2026-10520, a max-severity command injection that could allow root code execution, and CVE-2026-10523, an auth bypass for rogue admin access. #Ivanti #Sentry #CVE202610520", "creation_timestamp": "2026-06-10T06:45:13.832223Z"} 2026-06-10T06:45:13.832223+00:00 https://vulnerability.circl.lu/sighting/779a6ebf-7ddb-4ff5-ab23-7436d33c3068/export 2026-06-10T11:42:18.346809+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "779a6ebf-7ddb-4ff5-ab23-7436d33c3068", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://www.acn.gov.it/portale/w/ivanti-june-security-update-1", "content": "Rilasciati gli aggiornamenti di sicurezza di giugno che risolvono 4 nuove vulnerabilit\u00e0, di cui due con gravit\u00e0 \u201ccritica\u201d e due con gravit\u00e0 \u201calta\u201d, in diversi prodotti Ivanti. Tra queste, si evidenzia la CVE-2026-10520, per la quale risulta disponibile un Proof of Concept (PoC) in rete.", "creation_timestamp": "2026-06-10T07:18:20.000000Z"} 2026-06-10T07:18:20+00:00 https://vulnerability.circl.lu/sighting/fe1da3ee-3bdd-4096-aead-e7d9917b7a00/export 2026-06-10T11:42:18.346738+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "fe1da3ee-3bdd-4096-aead-e7d9917b7a00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-10520", "type": "seen", "source": "https://infosec.exchange/users/obivan/statuses/116724727198447267", "content": "More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) https://labs.watchtowr.com/more-evidence-that-words-dont-mean-what-we-thought-they-meant-ivanti-sentry-pre-auth-os-command-injection-cve-2026-10520/", "creation_timestamp": "2026-06-10T07:53:11.200323Z"} 2026-06-10T07:53:11.200323+00:00 https://vulnerability.circl.lu/sighting/dc21a26b-dca6-4422-adeb-3212b9c9c150/export 2026-06-10T11:42:18.346663+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "dc21a26b-dca6-4422-adeb-3212b9c9c150", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-10520", "type": "seen", "source": "https://bsky.app/profile/obivan.infosec.exchange.ap.brid.gy/post/3mnwaeizy7e42", "content": "More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) https://labs.watchtowr.com/more-evidence-that-words-dont-mean-what-we-thought-they-meant-ivanti-sentry-pre-auth-os-command-injection-cve-2026-10520/", "creation_timestamp": "2026-06-10T07:58:23.409158Z"} 2026-06-10T07:58:23.409158+00:00 https://vulnerability.circl.lu/sighting/a93e6f38-7897-404f-967b-6b93ae49feb1/export 2026-06-10T11:42:18.346572+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a93e6f38-7897-404f-967b-6b93ae49feb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/tyden.bsky.social/post/3mnwcus6ljq2o", "content": "Spole\u010dnost Ivanti vydala opravy pro dv\u011b kritick\u00e9 zranitelnosti ve sv\u00e9m \u0159e\u0161en\u00ed Sentry, v\u010detn\u011b maxim\u00e1ln\u011b z\u00e1va\u017en\u00e9 chyby CVE-2026-10520", "creation_timestamp": "2026-06-10T08:41:27.123793Z"} 2026-06-10T08:41:27.123793+00:00 https://vulnerability.circl.lu/sighting/71c1021b-de07-4b24-88a1-178237c13b28/export 2026-06-10T11:42:18.345755+00:00 Alexandre Dulaunoy https://vulnerability.circl.lu/user/adulau {"uuid": "71c1021b-de07-4b24-88a1-178237c13b28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-10520", "type": "published-proof-of-concept", "source": "https://labs.watchtowr.com/more-evidence-that-words-dont-mean-what-we-thought-they-meant-ivanti-sentry-pre-auth-os-command-injection-cve-2026-10520/", "content": "", "creation_timestamp": "2026-06-10T09:08:29.979690Z"} 2026-06-10T09:08:29.979690+00:00 https://vulnerability.circl.lu/sighting/bff82bdf-e39d-4d9e-825f-76b857994304/export 2026-06-10T11:42:18.345672+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "bff82bdf-e39d-4d9e-825f-76b857994304", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116725277445928014", "content": "Some increased actor activities are shown targeting Ivanti Sentry (CVE-2026-10520) https://vuldb.com/vuln/369559/cti", "creation_timestamp": "2026-06-10T10:13:08.354004Z"} 2026-06-10T10:13:08.354004+00:00 https://vulnerability.circl.lu/sighting/7123ec77-73bc-4895-99cd-a75acf5a90ba/export 2026-06-10T11:42:18.345567+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7123ec77-73bc-4895-99cd-a75acf5a90ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/rxerium.com/post/3mnwjorn6h22a", "content": "\ud83d\udea8 CVE-2026-10520, a critical CVSS 10 OS Command Injection vuln in Ivanti Sentry is now under active exploitation as reported by Defused \n\nScan infrastructure to see if you're vulnerable:\ngithub.com/rxerium/rxer...\n\nPatches are available as per Ivanti's advisory:\nhub.ivanti.com/s/article/Se...", "creation_timestamp": "2026-06-10T10:43:22.594330Z"} 2026-06-10T10:43:22.594330+00:00 https://vulnerability.circl.lu/sighting/7ac053f9-92fa-4d8c-b731-ed01aee65f00/export 2026-06-10T11:42:18.344121+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7ac053f9-92fa-4d8c-b731-ed01aee65f00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-10520", "type": "seen", "source": "https://bsky.app/profile/aegisbot.bsky.social/post/3mnwkyeuu2326", "content": "\ud83d\udea8 CISA KEV [CVSS 10.0 \u00b7 CRITICAL]\nCVE-2026-10520, CVE-2026-10523 - Multiple critical vulnerabilities affecting Ivanti Sentry\n\nhttps://www.rapid7.com/blog/post/etr-cve-2026-10520-cve-2026-10523-multiple-critical-vulnerabilities-affecting-ivanti-sentry\n\n#CISA #KEV #PatchNow", "creation_timestamp": "2026-06-10T11:06:36.593406Z"} 2026-06-10T11:06:36.593406+00:00