A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:HIvanti Connect Secure
APPIvanti22.7< 22.7Ivanti Policy Secure
APPIvanti22.7< 22.7Ivanti Zero Trust Access Gateway
APPIvanti22.8< 22.8
CISA KEV — detailsi
- Vendori
- Ivanti ↗
- Producti
- Connect Secure, Policy Secure, and ZTA Gateways
- Added to KEVi
- April 4, 2025
- Remediation deadline (US Federal)i
- April 11, 2025(overdue)
- Ransomwarei
- Active ransomware campaigns exploit this vulnerability
Apply mitigations as set forth in the CISA instructions linked below.
Ivanti Connect Secure, Policy Secure, and ZTA Gateways contains a stack-based buffer overflow vulnerability that allows a remote unauthenticated attacker to achieve remote code execution.
Related vulnerabilities
Stack-based buffer overflow RCE w Ivanti Connect Secure, Policy Secure i Neurons for ZTA
Command injection w Ivanti Connect Secure i Policy Secure — RCE jako administrator
Pulse Connect Secure 9.0R3/9.1R1 and higher is vulnerable to an authentication bypass vulnerability exposed by...
In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an...
Code injection w Ivanti Connect Secure i Policy Secure — RCE