Lucene search
K

5 matches found

Ivanti
Ivanti
added 2025/09/09 1:59 p.m.11 views

September Security Advisory Ivanti Connect Secure, Policy Secure, ZTA Gateways and Neurons for Secure Access (Multiple CVEs)

Update 10 Sept Ivanti Policy Secure: Affected and Resolved in Versions updated Summary Ivanti has released updates for Ivanti Connect Secure, Policy Secure, ZTA Gateways and Neurons for Secure Access which addresses six medium and five high vulnerabilities. We are not aware of any customers being...

8.9CVSS7.6AI score0.00855EPSS
Exploits0
CISA
CISA
added 2025/04/04 12:0 p.m.14 views

CISA Adds One Vulnerability to the KEV Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-22457link is external Ivanti Connect Secure, Policy Secure and ZTA Gateways Stack-Based Buffer Overflow Vulnerability These types of vulnerabilities are frequent...

9.8CVSS7AI score0.99973EPSS
In wildExploits7References8
CISA
CISA
added 2025/04/04 12:0 p.m.10 views

Ivanti Releases Security Updates for Connect Secure, Policy Secure & ZTA Gateways Vulnerability (CVE-2025-22457)

Ivanti released security updates to address vulnerabilities CVE-2025-22457 in Ivanti Connect Secure, Policy Secure & ZTA Gateways. A cyber threat actor could exploit CVE-2025-22457 to take control of an affected system. CISA has added CVE-2025-22457 to its Known Exploited Vulnerabilities Catalog...

9.8CVSS7.7AI score0.99973EPSS
Exploits7References6
BDU FSTEC
BDU FSTEC
added 2025/04/04 12:0 a.m.15 views

The vulnerability of Ivanti Connect Secure, Ivanti Policy Secure, and ZTA Gateways’ network access control devices lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Ivanti Connect Secure, Ivanti Policy Secure, and ZTA Gateways lies in buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS8.7AI score0.99973EPSS
Exploits7References3Affected Software4
Rapid7 Blog
Rapid7 Blog
added 2025/04/03 6:50 p.m.9 views

Ivanti Connect Secure CVE-2025-22457 exploited in the wild

On Thursday, April 3, 2025, Ivanti disclosed a critical severity vulnerability affecting Ivanti Connect Secure, Pulse Connect Secure, Policy Secure, and ZTA Gateways. CVE-2025-22457 is a stack-based buffer overflow vulnerability that allows remote, unauthenticated attackers to execute code on the...

9.8CVSS10AI score0.99973EPSS
Exploits7
Rows per page
Query Builder