https://vulnerability.circl.lu/sightings/feed 2026-06-10T09:37:13.711121+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/b8d465bc-8224-4b04-b2dd-6c67a8b2665c/export 2026-06-10T09:37:13.720244+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "b8d465bc-8224-4b04-b2dd-6c67a8b2665c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mnvjntpmiv2t", "content": "We're back - analyzing CVE-2026-10520, a Pre-Auth RCE in Ivanti's confusingly named Sentry product.\n\nEnjoy!\nhttps://t.co/efAfOc56OK\n\n\u2014 from @watchtowrcyber (https://x.com/watchtowrcyber/status/2064511364375179457)", "creation_timestamp": "2026-06-10T01:10:10.267254Z"} 2026-06-10T01:10:10.267254+00:00 https://vulnerability.circl.lu/sighting/baac9cc6-b477-47a9-bd14-ada8290c47e9/export 2026-06-10T09:37:13.720170+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "baac9cc6-b477-47a9-bd14-ada8290c47e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3mnvkhko6hr26", "content": "More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) - watchTowr Labs", "creation_timestamp": "2026-06-10T01:24:32.755113Z"} 2026-06-10T01:24:32.755113+00:00 https://vulnerability.circl.lu/sighting/7f1f1d23-9138-40cc-a87d-536b38697a34/export 2026-06-10T09:37:13.720097+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7f1f1d23-9138-40cc-a87d-536b38697a34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-10520.yaml", "content": "", "creation_timestamp": "2026-06-10T02:16:48.000000Z"} 2026-06-10T02:16:48+00:00 https://vulnerability.circl.lu/sighting/9171c618-3d38-4954-aaa1-1fab7e064ec8/export 2026-06-10T09:37:13.720020+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "9171c618-3d38-4954-aaa1-1fab7e064ec8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mnvu3fz7q22z", "content": "~Watchtowr~\nCVE-2026-10520 is a critical pre-auth OS command injection in Ivanti Sentry allowing root-level RCE.\n-\nIOCs: (None identified)\n-\n#CVE202610520 #Ivanti #ThreatIntel", "creation_timestamp": "2026-06-10T04:16:42.475711Z"} 2026-06-10T04:16:42.475711+00:00 https://vulnerability.circl.lu/sighting/3402cef9-aa51-41ec-aad2-3ec5d225e0f3/export 2026-06-10T09:37:13.719945+00:00 Alexandre Dulaunoy https://vulnerability.circl.lu/user/adulau {"uuid": "3402cef9-aa51-41ec-aad2-3ec5d225e0f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/536dbd2e-9793-4c4b-bc54-a21fd7e60e65", "content": "", "creation_timestamp": "2026-06-10T04:44:07.374229Z"} 2026-06-10T04:44:07.374229+00:00 https://vulnerability.circl.lu/sighting/116fc7a3-9a7c-4b5a-96aa-4b6ca598e084/export 2026-06-10T09:37:13.719869+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "116fc7a3-9a7c-4b5a-96aa-4b6ca598e084", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnw4exs6dr2l", "content": "Ivanti patched two critical Sentry flaws, including CVE-2026-10520, a max-severity command injection that could allow root code execution, and CVE-2026-10523, an auth bypass for rogue admin access. #Ivanti #Sentry #CVE202610520", "creation_timestamp": "2026-06-10T06:45:13.832223Z"} 2026-06-10T06:45:13.832223+00:00 https://vulnerability.circl.lu/sighting/fe1da3ee-3bdd-4096-aead-e7d9917b7a00/export 2026-06-10T09:37:13.719793+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "fe1da3ee-3bdd-4096-aead-e7d9917b7a00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-10520", "type": "seen", "source": "https://infosec.exchange/users/obivan/statuses/116724727198447267", "content": "More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) https://labs.watchtowr.com/more-evidence-that-words-dont-mean-what-we-thought-they-meant-ivanti-sentry-pre-auth-os-command-injection-cve-2026-10520/", "creation_timestamp": "2026-06-10T07:53:11.200323Z"} 2026-06-10T07:53:11.200323+00:00 https://vulnerability.circl.lu/sighting/dc21a26b-dca6-4422-adeb-3212b9c9c150/export 2026-06-10T09:37:13.719680+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "dc21a26b-dca6-4422-adeb-3212b9c9c150", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-10520", "type": "seen", "source": "https://bsky.app/profile/obivan.infosec.exchange.ap.brid.gy/post/3mnwaeizy7e42", "content": "More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) https://labs.watchtowr.com/more-evidence-that-words-dont-mean-what-we-thought-they-meant-ivanti-sentry-pre-auth-os-command-injection-cve-2026-10520/", "creation_timestamp": "2026-06-10T07:58:23.409158Z"} 2026-06-10T07:58:23.409158+00:00 https://vulnerability.circl.lu/sighting/a93e6f38-7897-404f-967b-6b93ae49feb1/export 2026-06-10T09:37:13.718836+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a93e6f38-7897-404f-967b-6b93ae49feb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10520", "type": "seen", "source": "https://bsky.app/profile/tyden.bsky.social/post/3mnwcus6ljq2o", "content": "Spole\u010dnost Ivanti vydala opravy pro dv\u011b kritick\u00e9 zranitelnosti ve sv\u00e9m \u0159e\u0161en\u00ed Sentry, v\u010detn\u011b maxim\u00e1ln\u011b z\u00e1va\u017en\u00e9 chyby CVE-2026-10520", "creation_timestamp": "2026-06-10T08:41:27.123793Z"} 2026-06-10T08:41:27.123793+00:00 https://vulnerability.circl.lu/sighting/71c1021b-de07-4b24-88a1-178237c13b28/export 2026-06-10T09:37:13.715388+00:00 Alexandre Dulaunoy https://vulnerability.circl.lu/user/adulau {"uuid": "71c1021b-de07-4b24-88a1-178237c13b28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-10520", "type": "published-proof-of-concept", "source": "https://labs.watchtowr.com/more-evidence-that-words-dont-mean-what-we-thought-they-meant-ivanti-sentry-pre-auth-os-command-injection-cve-2026-10520/", "content": "", "creation_timestamp": "2026-06-10T09:08:29.979690Z"} 2026-06-10T09:08:29.979690+00:00