Lucene search
K

15 matches found

The Hacker News
The Hacker News
added 2025/07/18 6:13 p.m.25 views

Ivanti Flaws Exploited to Drop MDifyLoader and Launch In-Memory Cobalt Strike Attacks

Cybersecurity researchers have disclosed details of a new malware called MDifyLoader that has been observed in conjunction with cyber attacks exploiting security flaws in Ivanti Connect Secure ICS appliances. According to a report published by JPCERT/CC today, the threat actors behind the...

9.8CVSS8.8AI score0.99979EPSS
Exploits19
CISA
CISA
added 2025/04/08 12:0 p.m.17 views

Ivanti Releases Security Updates for Connect Secure, Policy Secure, and ZTA Gateways

Updated April 8, 2025 CISA updated these mitigations based on identification of a new malware variant called RESURGE that could undermine the effectiveness of the mitigations previously provided. For more information on RESURGE, see MAR-25993211.R1.V1.CLEAR and CISA Releases Malware Analysis Repo...

9CVSS7.9AI score0.99971EPSS
In wildExploits13References8
CISA
CISA
added 2025/03/28 12:0 p.m.5 views

CISA Releases Malware Analysis Report on RESURGE Malware Associated with Ivanti Connect Secure

CISA has published a Malware Analysis Report MAR with analysis and associated detection signatures on a new malware variant CISA has identified as RESURGE. RESURGE contains capabilities of the SPAWNCHIMERA1link is external malware variant, including surviving reboots; however, RESURGE contains...

9CVSS7.6AI score0.99971EPSS
In wildExploits13References11
GithubExploit
GithubExploit
added 2025/03/10 9:33 p.m.371 views

Exploit for Stack-based Buffer Overflow in Ivanti Connect_Secure

Ivanti-CVE-2025-0282...

9CVSS7.2AI score0.99971EPSS
Exploits13
GithubExploit
GithubExploit
added 2025/01/22 8:14 a.m.272 views

Exploit for Stack-based Buffer Overflow in Ivanti Connect_Secure

PoC for CVE-2025-0282 Remote Unauthenticated Stack Buffer O...

9CVSS7AI score0.99971EPSS
Exploits13
NCSC
NCSC
added 2025/01/17 8:54 a.m.4 views

Vulnerabilities fixed in Ivanti Connect Secure and Policy Secure

Ivanti has fixed vulnerabilities in Connect Secure and Policy Secure. The first vulnerability CVE-2025-0282 can be exploited by malicious parties to execute arbitrary code remotely without authentication. The second vulnerability CVE-2025-0283 can be exploited by a locally authenticated malicious...

9CVSS9.8AI score0.99971EPSS
Exploits13References2
GithubExploit
GithubExploit
added 2025/01/16 2:45 p.m.307 views

Exploit for Stack-based Buffer Overflow in Ivanti Connect_Secure

PoC exploit for CVE-2025-0282, a remote unauthenticated stack-ba...

9CVSS8.7AI score0.99971EPSS
Exploits13
0day.today
0day.today
added 2025/01/16 12:0 a.m.297 views

Ivanti Buffer Overflow Proof of Concept Exploit

Proof of concept exploit for CVE-2025-0282, a remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways. PoC for CVE-2025-0282, a remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure,...

9CVSS8.2AI score0.99971EPSS
Exploits13
GithubExploit
GithubExploit
added 2025/01/11 2:6 a.m.267 views

Exploit for Stack-based Buffer Overflow in Ivanti Connect_Secure

CVE-2025-0282-Ivanti-exploit CVE-2025-0282 is a critical vulne...

9CVSS7.8AI score0.99971EPSS
Exploits13
Wiz blog
Wiz blog
added 2025/01/09 2:23 p.m.25 views

CVE-2025-0282 and CVE-2025-0283: Critical Ivanti 0days Exploited in the Wild

Detect and mitigate CVE-2025-0282, a critical RCE vulnerability in Ivanti Connect Secure and CVE-2025-0283, exploited as 0day vulnerabilities in the wild. Organizations should patch urgently...

9CVSS7AI score0.99971EPSS
Exploits13
The Hacker News
The Hacker News
added 2025/01/09 7:13 a.m.19 views

Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure

Ivanti is warning that a critical security flaw impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways has come under active exploitation in the wild beginning mid-December 2024. The security vulnerability in question is CVE-2025-0282 CVSS score: 9.0, a stack-based buffer overflow that...

9CVSS9.9AI score0.99971EPSS
Exploits13
Cvelist
Cvelist
added 2025/01/08 10:15 p.m.519 views

CVE-2025-0282

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution...

9CVSS0.99971EPSS
Exploits13References1
Circl
Circl
added 2025/01/08 5:4 p.m.5 views

CVE-2025-0282

creationtimestamp| type| source ---|---|--- 2025-01-08 17:04:23+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113793817841894943 2025-01-08 17:49:21+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113793994593261539 2025-01-08 17:54:03+00:00| seen|...

9CVSS6.9AI score0.99971EPSS
Exploits13References358
Ivanti
Ivanti
added 2025/01/08 4:55 p.m.529 views

Security Advisory Ivanti Connect Secure, Policy Secure & ZTA Gateways (CVE-2025-0282, CVE-2025-0283) 

Update: 21 Jan 2025 Patch Now Available for IPS & ZTA Gateways Summary: Ivanti has released an update that addresses one critical and one high vulnerability in Ivanti Connect Secure, Policy Secure and ZTA Gateways. Successful exploitation of CVE-2025-0282 could lead to unauthenticated remote code...

9CVSS8.7AI score0.99971EPSS
Exploits13
Tenable Nessus
Tenable Nessus
added 2025/01/08 12:0 a.m.23 views

Ivanti Policy Secure 22.7R1 <= 22.7R1.2 Remote Code Execution (CVE-2025-0282)

The version of Ivanti Policy Secure installed on the remote host is 22.7R1 prior or equal to 22.7R1.2 Build 1485. It is, therefore, affected by a remote code execution vulnerability: - A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before...

9CVSS8.7AI score0.99971EPSS
Exploits13References2
Rows per page
Query Builder