Description
Ivanti Sentry is vulnerable to an authentication bypass vulnerability. An attacker could exploit this vulnerability to get full access to the system.
Remediation
Upgrade to the latest version of Ivanti Sentry
References
KB API Authentication Bypass on Sentry Administrator Interface - CVE-2023-38035
Ivanti Sentry Authentication Bypass CVE-2023-38035 Deep Dive
Related Vulnerabilities
WordPress CVE-2016-5832 Vulnerability (CVE-2016-5832)
OpenSSL Cryptographic Issues Vulnerability (CVE-2014-3566)
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46731)
Oracle JRE Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-21011)
Drupal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-25277)