Ivanti fixed a new critical Sentry API authentication bypass flaw | allinfosecnews.com

Aug. 22, 2023, 6:59 a.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Ivanti warned customers of a new critical Sentry API authentication bypass vulnerability tracked as CVE-2023-38035. The software company Ivanti released urgent security patches to address a critical-severity vulnerability, tracked as CVE-2023-38035 (CVSS score 9.8), in the Ivanti Sentry (formerly MobileIron Sentry) product. The vulnerability could be exploited to access sensitive API data and configurations, run […]

The post Ivanti fixed a new critical Sentry API authentication bypass flaw appeared first on Security Affairs.

access address api api authentication authentication authentication bypass authentication bypass flaw breaking news bypass bypass vulnerability critical customers cve cvss exploited flaw hacking information security news it information security ivanti mobileiron patches pierluigi paganini product score security sentry severity software urgent vulnerability

More from securityaffairs.co / Security Affairs

Ex-NSA employee sentenced to 262 months for attempting to transfer classified documents to Russia 11 hours ago | securityaffairs.co

agency breaking news classified colorado +16

Cuttlefish malware targets enterprise-grade SOHO routers 12 hours ago | securityaffairs.co

authentication black lotus black lotus labs cloud +26

A flaw in the R programming language could allow code execution 14 hours ago | securityaffairs.co

arbitrary code arbitrary code execution breaking news code +22

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall 22 hours ago | securityaffairs.co

apt bypass china china great firewall +21

Notorious Finnish Hacker sentenced to more than six years in prison 1 day, 8 hours ago | securityaffairs.co

aleksanteri kivimäki breaking news center cyber crime +17

CISA guidelines to protect critical infrastructure against AI-based threats 1 day, 13 hours ago | securityaffairs.co

agency ai ai risks analysis +27

NCSC: New UK law bans default passwords on smart devices 1 day, 23 hours ago | securityaffairs.co

april ban bans breaking news +29

The FCC imposes $200 million in fines on four US carriers for unlawfully sharing user … 2 days ago | securityaffairs.co

access breaking news carriers communications +19

Google prevented 2.28 million policy-violating apps from being published on Google Play in 2023 2 days, 10 hours ago | securityaffairs.co

android apps breaking news google +14

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland

View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France

View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States

View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India

View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC

View on infosec-jobs.com