Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability Allowing Remote Code Execution

Vulnerability

Exploited

Patched

A stack-based buffer overflow vulnerability has been identified in Ivanti Connect Secure versions prior to 22.7R2.6, Ivanti Policy Secure versions prior to 22.7R1.5, and Ivanti ZTA Gateways versions prior to 22.8R2.2. This vulnerability allows a remote, unauthenticated attacker to execute code on the affected system.

Impact

Exploitation of this vulnerability could lead to unauthorized remote code execution on the affected system.

Remediation

Users of Ivanti Connect Secure should upgrade to version 22.7R2.6, released in February 2025. For Ivanti Policy Secure, a patch will be available on May 20, 2025. Ivanti ZTA Gateways will receive an automatic patch on April 19, 2025.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

7.5

exploitability

9.3

remediation

3.7

relevance

0.0

threat

9.1

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

7.5

exploitability

9.3

remediation

3.7

relevance

0.0

threat

9.1

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

Ivanti Connect Secure

Ivanti Pulse Connect Secure

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating