CVE-2025-0282

high-risk

Published 2025-01-08

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution.

Do I need to act?

94.1% chance of exploitation in next 30 days

EPSS score — higher than 6% of all CVEs

CISA KEV: actively exploited in the wild

On the Known Exploited Vulnerabilities catalog — federal agencies must patch

1 public exploit available

52213

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.0/10 Critical

NETWORK / HIGH complexity

Affected Products (11)

Connect Secure

Neurons For Zero-Trust Access

Policy Secure

Affected Vendors

Ivanti

References (7)

Vendor Advisory https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-Poli...

Exploit https://cloud.google.com/blog/topics/threat-intelligence/ivanti-connect-secure-v...

Third Party Advisory https://www.cisa.gov/cisa-mitigation-instructions-cve-2025-0282

Exploit https://github.com/sfewer-r7/CVE-2025-0282

Exploit https://labs.watchtowr.com/exploitation-walkthrough-and-techniques-ivanti-connec...

US Government Resource https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-...

US Government Resource https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext...

/ 100

high-risk

Severity 26/34 · High

Exploitability 27/34 · High

Exposure 16/34 · Moderate