CVE-2023-38035CISA KEV: Actively Exploited

Ivanti Sentry Authentication Bypass Vulnerability

Published Aug 22, 2023·Updated Aug 22, 2023

Description

Ivanti Sentry, formerly known as MobileIron Sentry, contains an authentication bypass vulnerability that may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration.

Public Exploits & PoCs3 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free