CVE-2025-0282 - Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability
Project:Ivanti
Product:Connect Secure, Policy Secure, and ZTA Gateways
Date Added:2025-01-08Due Date:2025-01-15
Vulnerability Name
Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability
Description
Ivanti Connect Secure, Policy Secure, and ZTA Gateways contain a stack-based buffer overflow which can lead to unauthenticated remote code execution.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply mitigations as set forth in the CISA instructions linked below to include conducting hunt activities, taking remediation actions if applicable, and applying updates prior to returning a device to service.
Additional Notes
CISA Mitigation Instructions: https://www.cisa.gov/cisa-mitigation-instructions-CVE-2025-0282 Additional References: https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-0282-CVE-2025-0283
https://nvd.nist.gov/vuln/detail/CVE-2025-0282
Related News Articles
DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan AttacksApril 25, 2025
Chinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell ToolApril 15, 2025
Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)April 4, 2025
Ivanti patches Connect Secure zero-day exploited since mid-MarchApril 4, 2025
RESURGE Malware Exploits Ivanti Flaw with Rootkit and Web Shell FeaturesMarch 30, 2025