Ivanti released a critical security advisory addressing vulnerabilities in its Connect Secure, Policy Secure, and ZTA Gateways products.
This advisory reveals the existence of two significant vulnerabilities, CVE-2025-0282 and CVE-2025-0283, which have been exploited in the wild, necessitating immediate action from users.
CVE-2025-0282 is a stack-based buffer overflow vulnerability that affects Ivanti Connect Secure versions prior to 22.7R2.5, Ivanti Policy Secure before 22.7R1.2, and Ivanti Neurons for ZTA gateways before 22.7R2.3.
This vulnerability allows an unauthenticated remote attacker to execute arbitrary code, posing a severe security risk. It has received a CVSS score of 9.0, categorizing it as a critical vulnerability.
Investigate Real-World Malicious Links, Malware & Phishing Attacks With ANY.RUN – Try for Free
The second vulnerability, CVE-2025-0283, similarly affects the same versions of Ivanti’s products but permits a local authenticated attacker to escalate privileges.
This vulnerability has a CVSS score of 7.0, indicating a high severity level. While CVE-2025-0282 has been confirmed as exploited in the wild, there is currently no evidence that CVE-2025-0283 has been abused.
Ivanti emphasizes the need for all customers to promptly apply the available patches to mitigate the risks posed by these vulnerabilities.
For those using Ivanti Connect Secure, upgrading to version 22.7R2.5 is critical. The patch is now available for download through the Ivanti portal.
Users should also conduct thorough scans using the Integrity Checker Tool (ICT) to identify any signs of compromise.
Affected Versions and Patch Availability
| CVE | Product Name | Affected Version(s) | Resolved Version(s) | Patch Availability |
| CVE-2025-0282 | Ivanti Connect Secure | 22.7R2 through 22.7R2.4 | 22.7R2.5 | Available Now |
| CVE-2025-0283 | Ivanti Connect Secure | 22.7R2.4 and prior | 22.7R2.5 | Available Now |
Organizations utilizing Ivanti products must act swiftly to safeguard their networks against these vulnerabilities.
Upgrading and continuous monitoring of the ICT are key components of a robust cybersecurity strategy.
As exploits become increasingly sophisticated, staying informed and proactive is essential to maintaining the integrity of network infrastructures.
Find this News Interesting! Follow us on Google News, LinkedIn, and X to Get Instant Updates!
Cybercriminals are increasingly exploiting search engine optimization (SEO) techniques and paid advertisements to manipulate search…
Cybersecurity experts have unearthed an intricate cyber campaign that leverages deceptive websites posing as the…
Hackers are exploiting what's known as "Dangling DNS" records to take over corporate subdomains, posing…
Security researchers and cybersecurity experts have recently uncovered new variants of the notorious HelloKitty ransomware,…
The RansomHub ransomware group has emerged as a significant danger, targeting a wide array of…
Threat actors are increasingly using email bombing to bypass security protocols and facilitate further malicious…