From Cyber Security News – Ivanti Connect Secure Vulnerabilities Let Attackers Execute Code Remotely

News

From Cyber Security News – Ivanti Connect Secure Vulnerabilities Let Attackers Execute Code Remotely

shaikh Saqib February 12, 2025

Ivanti has disclosed a critical vulnerability, CVE-2025-22467, impacting its Connect Secure (ICS) product. This stack-based buffer overflow vulnerability, rated 9.9 (Critical) on the CVSS v3.1 scale, allows remote authenticated attackers to execute arbitrary code on affected systems. The flaw is present in versions up to 22.7R2.5 and has been addressed in the latest release, 22.7R2.6.
The post Ivanti Connect Secure Vulnerabilities Let Attackers Execute Code Remotely appeared first on Cyber Security News. Read More

advanced persistent threat exploitation APT groups targeting Ivanti critical security flaw CVE-2025-22467 CVSS 9.9 vulnerability CWE-121 buffer overflow cyber awareness cyber defense cyber protection cybersecurity cybersecurity best practices.cybersecurity news data breaches digital privacy enterprise VPN security hacking hacking news infosec infosec news Ivanti Connect Secure patch Ivanti Connect Secure vulnerability Ivanti patch update Ivanti security advisory least privilege principle network security network segmentation security network-based attack vector note online security remote code execution security perspective security update 22.7R2.6 security updates SIEM monitoring for Ivanti vulnerabilities.software vulnerability mitigation stack-based buffer overflow threat threat intelligence threat note threatnote

Last updated on February 13, 2025