VDB
BDU%3A2025-03788
BDU%3A2025-03788
PUBLISHED
CVSS 7.599999904632568 HIGH
Уязвимость средств контроля сетевого доступа Ivanti Connect Secure, Ivanti Policy Secure и ZTA Gateways, связанная с переполнением буфера в стеке, позволяющая нарушителю выполнить произвольный код
Risk Scores
CVSS 2.0
7.599999904632568
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ivanti | Connect Secure, Policy Secure, Pulse Connect Secure (EoS), ZTA Gateways |
Exploit Intelligence
- PoC CVE-2025-22457 (github-poc)
- PoC CVE-2025-22457 (github-poc)
- CVE-2025-22457: Python Exploit POC Scanner to Detect Ivanti Connect Secure RCE (github-poc)
- CVE-2025-22457: Python Exploit POC Scanner to Detect Ivanti Connect Secure RCE (github-poc)
- PoC for CVE-2025-22457 - A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Pulse Connect Secure, Ivanti Policy Secure, and ZTA Gateways (github-poc)
- PoC for CVE-2025-22457 - A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Pulse Connect Secure, Ivanti Policy Secure, and ZTA Gateways (github-poc)
- Prevent CVE-2025-22457 and other security problems with Juniper/Ivanti Secure Connect SSL VPN (github-poc)
- Prevent CVE-2025-22457 and other security problems with Juniper/Ivanti Secure Connect SSL VPN (github-poc)
- https://github.com/sfewer-r7/CVE-2025-22457 (circl)
- https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US (circl)
…and 10 more exploits
Timeline
- Apr 4, 2025 CVE Published
- Apr 23, 2025 CVE Updated