CISA Adds One Known Exploited Vulnerability to Catalog: CVE-2026-10520 in Ivanti Sentry
CISA added CVE-2026-10520, an OS command injection vulnerability in Ivanti Sentry, to its Known Exploited Vulnerabilities catalog on June 11, citing evidence of active exploitation.
At a glance
- CISA added CVE-2026-10520 (Ivanti Sentry OS command injection) to the KEV catalog on June 11, 2026 based on evidence of active exploitation.
- BOD 26-04 updates BOD 22-01 and requires FCEB agencies to prioritize remediation of KEV-listed vulnerabilities.
VERDICT — CONFIRMED
CISA added CVE-2026-10520, an OS command injection vulnerability in Ivanti Sentry, to its Known Exploited Vulnerabilities catalog on June 11, citing evidence of active exploitation. Per the alert, this class of flaw is a frequent attack vector and poses significant risk to the federal enterprise. Binding Operational Directive 26-04, which updates BOD 22-01, requires Federal Civilian Executive Branch agencies to prioritize rapid remediation of KEV-listed bugs.
Key facts on file
- CISA added CVE-2026-10520 (Ivanti Sentry OS command injection) to the KEV catalog on June 11, 2026 based on evidence of active exploitation.
- BOD 26-04 updates BOD 22-01 and requires FCEB agencies to prioritize remediation of KEV-listed vulnerabilities.

