"We are observing a large amount of Ivanti Sentry CVE-2026-10520 exploitation attempts based on the public PoC today," Shadowserver warned — a blunt finding that followed Ivanti's Tuesday patch and shifted the incident from theory to active exploitation within 24 hours.
CVE-2026-10520 and the Ivanti Sentry patch
The flaw, tracked as CVE-2026-10520, is an OS command injection vulnerability in Ivanti Sentry (formerly MobileIron Sentry) that allows attackers to execute code with root privileges on Internet-exposed secure mobile gateways. Ivanti released fixes on Tuesday in Sentry versions R10.5.2, R10.6.2, and R10.7.1. At the time of that advisory the company stated, "We are not aware of any customers being exploited by these vulnerabilities at the time of disclosure."
Shadowserver: internet scans, backdoors, and likely compromise
The next day the nonprofit security organization Shadowserver reported that attackers had already backdoored most of the Sentry gateways it found exposed online. Shadowserver said its own scans found 19 vulnerable instances and "at least 2 backdoored (thanks to Saudi NCA for the tip!). However, all remaining likely compromised too." The group cautioned that its detection was limited because "multiple Ivanti Sentry instances [are] not reachable in our scans (blocklisted?), if you have not patched now you are most likely compromised."
Ivanti's advisory versus observed activity
Ivanti's initial public advisory and the rapid Shadowserver findings present two contemporaneous claims: the vendor reported no known exploitation at disclosure, while an independent Internet watchdog reported exploitation the following day. The vulnerability's severity — root-level code execution via command injection on gateways that mediate traffic between corporate back ends and remote mobile devices — makes it a high-value target for attackers who seek a foothold into enterprise networks.
CISA context and Ivanti's exploitation history
The report places this incident against a record of prior Ivanti-targeted activity cited in the source. The Cybersecurity and Infrastructure Security Agency (CISA) ordered U.S. federal agencies last month to patch Ivanti systems after Ivanti warned customers about a high-severity remote code execution Endpoint Manager Mobile (EPMM) flaw that had been abused as a zero-day. Over the past several years, CISA has flagged 34 vulnerabilities across various Ivanti products as actively exploited in the wild, and 12 of those were targeted in ransomware attacks. The source also notes Ivanti's scale: more than 7,000 partners, over 3,000 employees, and IT asset management solutions used by over 40,000 customers worldwide.
What this means for technologists, procurement leaders, and affected enterprises
- Technologists and security teams: Shadowserver's statement — that unpatched Sentry instances are "most likely compromised" — elevates the need to verify that Sentry appliances are updated to R10.5.2, R10.6.2, or R10.7.1 and to check for signs of backdoors on Internet-exposed gateways.
- Procurement and enterprise leaders: Given Ivanti's large partner and customer footprint, organizations that deploy Sentry or other Ivanti products should account for the vendor's recent vulnerability history and CISA's prior emergency patch guidance when assessing vendor risk and continuity plans.
- Affected enterprises and incident response teams: The rapid shift from patch release to reported exploitation underscores the narrow window between disclosure and abuse; Shadowserver's limited scan coverage (blocklisting of instances) means organizations cannot rely on third-party discovery alone.
Two facts frame the immediate policy and operational challenge: Ivanti quickly published fixes for CVE-2026-10520, and within a day a reputable watchdog reported active backdoors on exposed gateways. The tension between a vendor saying it has "no evidence" of exploitation and an independent scan reporting likely compromise is a practical problem for network defenders — one that requires patching, investigation, and an acceptance that detection gaps can hide rapid attacker activity. For now, the record in the sourced reporting leaves a stark, concrete question: will organizations with Internet-exposed Sentry appliances discover and remove compromises before adversaries use those gateways to move deeper into enterprise networks?
