CVE-2025-22457 | Attaxion

CISA Known Exploited Vulnerability (KEV)

Name

Ivanti Connect Secure, Policy Secure and ZTA Gateways Stack-Based Buffer Overflow Vulnerability

Exploit added

April 4, 2025

Action due

April 11, 2025

Action required

Apply mitigations as set forth in the CISA instructions linked below.

Description

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution.

References

https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457

Weakness Enumeration

CWE-ID	CWE Name
CWE-121	Stack-based Buffer Overflow
CWE-787	Out-of-bounds Write

Known Affected Software Configurations

cpe:2.3:a:ivanti:connect_secure:22.7:r2.5::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.6:r1.5::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.6:r1.6::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.6:r1.7::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.7:r1.6::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.7:r2.2::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.7:r2.3::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.2:r4::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.2:r5::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.3:r1::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.3:r4::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.4:r1::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.4:r3::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.5:r1.2::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.5:r1::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.6:r1.2::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.6:r1.3::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.6:r1::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.7:r1.2::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.7:r1.3::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.7:r1.4::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.7:r1.5::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.7:r1::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.7:r2::::::
cpe:2.3:a:ivanti:policy_secure:22.7:-::::::
cpe:2.3:a:ivanti:policy_secure:22.7:r1.1::::::
cpe:2.3:a:ivanti:policy_secure:22.7:r1.2::::::
cpe:2.3:a:ivanti:policy_secure:22.7:r1::::::
cpe:2.3:a:ivanti:connect_secure:22.7:-::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r1.1::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r1.2::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r1.3::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r1.4::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r1.5::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r1::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r2.1::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r2.2::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r2.3::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r2.4::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r2::::::
cpe:2.3:a:ivanti:connect_secure:8.0:-::::::
cpe:2.3:a:ivanti:connect_secure:8.1:-::::::
cpe:2.3:a:ivanti:connect_secure:7.4:-::::::
cpe:2.3:a:ivanti:connect_secure:8.3:-::::::
cpe:2.3:a:ivanti:connect_secure:9.1:-::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:-:::::::*
cpe:2.3:a:ivanti:policy_secure:9.0:-::::::
cpe:2.3:a:ivanti:policy_secure:9.1:-::::::
cpe:2.3:a:ivanti:connect_secure:9.0:-::::::
cpe:2.3:a:ivanti:connect_secure:22.6:-::::::
cpe:2.3:a:ivanti:connect_secure:22.2:-::::::
cpe:2.3:a:ivanti:neurons_for_zero-trust_access:22.2:r1::::::

Details

Source:
NVD

Published:
April 3, 2025

Updated:
April 8, 2025

Risk information

CVSS v3

Base score:
9

Severity:

CRITICAL

Vector:
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CVSS v2

Not defined