Ivanti released a critical security advisory addressing vulnerabilities in its Connect Secure, Policy Secure, and ZTA Gateways products.
This advisory reveals the existence of two significant vulnerabilities, CVE-2025-0282 and CVE-2025-0283, which have been exploited in the wild, necessitating immediate action from users.
CVE-2025-0282 is a stack-based buffer overflow vulnerability that affects Ivanti Connect Secure versions prior to 22.7R2.5, Ivanti Policy Secure before 22.7R1.2, and Ivanti Neurons for ZTA gateways before 22.7R2.3.
This vulnerability allows an unauthenticated remote attacker to execute arbitrary code, posing a severe security risk. It has received a CVSS score of 9.0, categorizing it as a critical vulnerability.
Investigate Real-World Malicious Links, Malware & Phishing Attacks With ANY.RUN – Try for Free
The second vulnerability, CVE-2025-0283, similarly affects the same versions of Ivanti’s products but permits a local authenticated attacker to escalate privileges.
This vulnerability has a CVSS score of 7.0, indicating a high severity level. While CVE-2025-0282 has been confirmed as exploited in the wild, there is currently no evidence that CVE-2025-0283 has been abused.
Ivanti emphasizes the need for all customers to promptly apply the available patches to mitigate the risks posed by these vulnerabilities.
For those using Ivanti Connect Secure, upgrading to version 22.7R2.5 is critical. The patch is now available for download through the Ivanti portal.
Users should also conduct thorough scans using the Integrity Checker Tool (ICT) to identify any signs of compromise.
Affected Versions and Patch Availability
| CVE | Product Name | Affected Version(s) | Resolved Version(s) | Patch Availability |
| CVE-2025-0282 | Ivanti Connect Secure | 22.7R2 through 22.7R2.4 | 22.7R2.5 | Available Now |
| CVE-2025-0283 | Ivanti Connect Secure | 22.7R2.4 and prior | 22.7R2.5 | Available Now |
Organizations utilizing Ivanti products must act swiftly to safeguard their networks against these vulnerabilities.
Upgrading and continuous monitoring of the ICT are key components of a robust cybersecurity strategy.
As exploits become increasingly sophisticated, staying informed and proactive is essential to maintaining the integrity of network infrastructures.
Find this News Interesting! Follow us on Google News, LinkedIn, and X to Get Instant Updates!
Criminal IP, a globally recognized Cyber Threat Intelligence (CTI) solution by AI SPERA, has launched…
A new and sophisticated phishing scam has been uncovered, leveraging Microsoft 365 domains to trick…
The malicious Southeast Asian APT group known as OceanLotus (APT32) has been implicated in a…
Malicious packages "solanacore," "solana login," and "walletcore-gen" on npmjs target Solana developers with Windows trojans…
A Data Leak Site (DLS) belonging to a new extortion group named Morpheus, which has…
The Green Bay Packers, Inc. has confirmed that its online merchandise store was hacked, leading…