CVE-2025-22457 - Ivanti Connect Secure, Policy Secure and ZTA Gateways Stack-Based Buffer Overflow Vulnerability

CVE ID:CVE-2025-22457

Project:Ivanti

Product:Connect Secure, Policy Secure and ZTA Gateways

Date Added:2025-04-04Due Date:2025-04-11

Vulnerability Name

Ivanti Connect Secure, Policy Secure and ZTA Gateways Stack-Based Buffer Overflow Vulnerability

Description

Ivanti Connect Secure, Policy Secure and ZTA Gateways contains a stack-based buffer overflow vulnerability that allows a remote unauthenticated attacker to achieve remote code execution.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations as set forth in the CISA instructions linked below.

Additional Notes

CISA Mitigation Instructions: https://www.cisa.gov/cisa-mitigation-instructions-cve-2025-22457

Additional References: https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457)

https://nvd.nist.gov/vuln/detail/CVE-2025-22457

Top Security News

Latest CVE List

Common Alerts

MediumExponential Entity Expansion (Billion Laughs Attack)
HighRemote Code Execution - Shell Shock
MediumCRLF Injection
LowX-Debug-Token Information Leak
LowInsufficient Site Isolation Against Spectre Vulnerability
InformationalSession Management Response Identified
InformationalSec-Fetch-Site Header Has an Invalid Value
MediumCSP: Wildcard Directive
LowServer Leaks Information via "X-Powered-By" HTTP Response Header Field(s)
MediumTrace.axd Information Leak