2 matches found
CVE-2025-8712
Ivanti reports a missing authorization flaw (CVE-2025-8712) affecting Ivanti Connect Secure before 22.7R2.9/22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 22.8R2.3-723, and Ivanti Neurons for Secure Access before 22.8R1.4. The issue allows a remote authenticated attacker ...
CVE-2025-5456
CVE-2025-5456 is a buffer over-read in Ivanti Connect Secure prior to 22.7R2.8 or 22.8R2, Ivanti Policy Secure prior to 22.7R1.5, Ivanti ZTA Gateway prior to 2.8R2.3-723, and Ivanti Neurons for Secure Access prior to 22.8R1.4. The issue allows a remote unauthenticated attacker to trigger a denial...