Description
Ivanti Sentry is vulnerable to an authentication bypass vulnerability. An attacker could exploit this vulnerability to get full access to the system.
Remediation
Upgrade to the latest version of Ivanti Sentry
References
KB API Authentication Bypass on Sentry Administrator Interface - CVE-2023-38035
Ivanti Sentry Authentication Bypass CVE-2023-38035 Deep Dive
Related Vulnerabilities
Oracle JRE CVE-2019-2958 Vulnerability (CVE-2019-2958)
Oracle Database Server CVE-2009-1994 Vulnerability (CVE-2009-1994)
MySQL CVE-2015-2567 Vulnerability (CVE-2015-2567)
Python Improper Input Validation Vulnerability (CVE-2013-7338)
PostgreSQL Improper Access Control Vulnerability (CVE-2019-10130)