THIS security alert highlights critical vulnerabilities affecting enterprise systems, particularly related to Ivanti's gateway appliances. Three major vulnerabilities are noted: CVE-2026-50751 related to Check Point VPN, CVE-2026-10520 involving OS command injection with a CVSS score of 10, and CVE-2026-10523 which enables authentication bypass with a CVSS score of 9.9. Ivanti has released urgent patches that must be implemented immediately to prevent potential exploits. Currently, there are no reports of real-world attacks exploiting these vulnerabilities.
Ivanti patches CVE-2026-10520 gateway flaw after urgent alert
CyberSIXT Evidence Panel
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
Check Point VPN under attack as Splunk issues urgent patches
securityonline.info
-
Check Point VPN exploited, GreatXML bypasses BitLocker protection
-
Important GitLab Security Updates Address 12 Vulnerabilities
-
Check Point VPN and NVIDIA DALI flaws let attackers execute code
-
CVE-2026-10520 lets hackers run root on Ivanti Sentry
socradar.io
-
CVE-2026-10520, CVE-2026-10523 - Multiple critical vulnerabilities affecting Ivanti Sentry
rapid7.com
-
Check Point VPN flaw fuels VerdantBamboo espionage campaign
-
AI Browser Extensions Abuse CVE-2026-50751 to Harvest Chat Data
-
Ivanti patches CVE-2026-10520 gateway flaw after urgent alert
-
Critical Rclone Command Execution Bug Threatens Cloud Environments