CVE-2023-41724

CRITICAL Year: 2023
CVSS v3 Score
9.6
Critical
Weakness Type
CWE-77
View all →

Vulnerability Description

A command injection vulnerability in Ivanti Sentry prior to 9.19.0 allows unauthenticated threat actor to execute arbitrary commands on the underlying operating system of the appliance within the same physical or logical network.

Related Vulnerabilities

CVE-2020-14436

CRITICAL
CVSS:9.6(Critical)

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15....

CWE-772020

CVE-2020-14437

CRITICAL
CVSS:9.6(Critical)

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15....

CWE-772020

CVE-2020-14438

CRITICAL
CVSS:9.6(Critical)

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15....

CWE-772020

CVE-2020-14439

CRITICAL
CVSS:9.6(Critical)

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15....

CWE-772020

CVE-2020-14440

CRITICAL
CVSS:9.6(Critical)

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15....

CWE-772020

CVE-2020-14441

CRITICAL
CVSS:9.6(Critical)

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15....

CWE-772020