Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2025/09/09 4:15 p.m.3 views

CVE-2025-55143

Reflected text injection in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote unauthenticated attacker to inject arbitrary te...

6.1CVSS0.00026EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/09/09 3:55 p.m.1 views

CVE-2025-55144

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

5.4CVSS6.3AI score0.01492EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/09/09 3:37 p.m.4 views

CVE-2025-55148

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

7.6CVSS0.02776EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/09/09 12:0 a.m.2 views

PT-2025-36746

Name of the Vulnerable Software and Affected Versions: Ivanti Connect Secure versions prior to 22.7R2.9 Ivanti Policy Secure versions prior to 22.7R1.6 Ivanti ZTA Gateway versions prior to 2.8R2.3-723 Ivanti Neurons for Secure Access versions prior to 22.8R1.4 Description: A missing authorization...

8.8CVSS6.4AI score0.03843EPSS
Exploits0References6
OSV
OSVadded 2025/08/12 3:15 p.m.2 views

CVE-2025-5468

Improper handling of symbolic links in Ivanti Connect Secure before version 22.7R2.8 or 22.8R2, Ivanti Policy Secure before 22.7R1.5, Ivanti ZTA Gateway before 22.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a local authenticated attacker to re...

5.5CVSS5.9AI score
Exploits0References1
The Hacker News
The Hacker Newsadded 2024/03/01 6:26 a.m.61 views

Five Eyes Agencies Warn of Active Exploitation of Ivanti Gateway Vulnerabilities

The Five Eyes FVEY intelligence alliance has issued a new cybersecurity advisory warning of cyber threat actors exploiting known security flaws in Ivanti Connect Secure and Ivanti Policy Secure gateways, noting that the Integrity Checker Tool ICT can be deceived to provide a false sense of...

9.1CVSS9.5AI score0.94412EPSS
Exploits27
Positive Technologies
Positive Technologiesadded 2023/10/22 12:0 a.m.3 views

PT-2023-29834 · Ivanti · Ivanti Policy Secure +1

Name of the Vulnerable Software and Affected Versions: Wpmet Wp Ultimate Review plugin versions 2.2.4 and earlier ICS versions 9.x and 22.x IPS affected versions not specified Ivanti Connect Secure and Policy Secure gateways affected versions not specified Description: The issue concerns an...

8.8CVSS9.9AI score0.0007EPSS
Exploits0References8
Rows per page
Query Builder