CVE-2025-22457: Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability

CVE ID

CVE-2025-22457

Vulnerability Name

Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability

• Project: Ivanti
• Product: Connect Secure, Policy Secure, and ZTA Gateways

Date

• Date Added: 2025-04-04
• Due Date: 2025-04-11

Description

Ivanti Connect Secure, Policy Secure, and ZTA Gateways contains a stack-based buffer overflow vulnerability that allows a remote unauthenticated attacker to achieve remote code execution.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply mitigations as set forth in the CISA instructions linked below.

Additional Notes

CISA Mitigation Instructions: https://www.cisa.gov/cisa-mitigation-instructions-cve-2025-22457 ; Additional References: https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457 ; https://nvd.nist.gov/vuln/detail/CVE-2025-22457

Related Security News

• Ivanti Zero-Days Exploited to Drop MDifyLoader and Launch In-Memory Cobalt Strike Attacks
• DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks
• Chinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell Tool

More CVEs Info

Common Vulnerabilities & Exposures (CVE) List