A year after a series of vulnerabilities impacting a pair of Ivanti VPN products prompted an emergency directive from the Cybersecurity and Infrastructure Security Agency to federal agencies, the Utah-based software firm is again experiencing issues with one of its signature systems. The company on Wednesday disclosed two vulnerabilities — CVE-2025-0282 and CVE-2025-0283 — that were affecting Ivanti Connect Secure (ICS) appliances. Mandiant, enl…

CyberScoop

New zero-day exploit targets Ivanti VPN product

Factory resets and apply patches is the advice amid fortnight delay for other appliances The cybersecurity industry is urging those in charge of defending their orgs to take mitigation efforts “seriously” as Ivanti battles two dangerous new vulnerabilities, one of… Read more → The post Zero-day exploits plague Ivanti Connect Secure appliances for second year running appeared first on IT Security News.

IT Security News - cybersecurity, infosecurity news

Zero-day exploits plague Ivanti Connect Secure appliances for second year running

Hackers are actively targeting deployments of some Ivanti Inc. software products using a newly discovered security vulnerability. The company disclosed the exploit, which is tracked as CVE-2025-0282, on Wednesday. Ivanti is a major provider of infrastructure management and cybersecurity software with more than 40,000 customers. According to the company, those customers include several U.S. government […] The post Ivanti discloses critical VPN vu…

SiliconANGLE

Ivanti discloses critical VPN vulnerability being actively targeted by hackers - SiliconANGLE

Ivanti has issued a warning regarding a zero-day vulnerability, tracked as CVE-2025-0282, in its widely used VPN appliances that has been exploited to compromise customer networks. The vulnerability can be exploited without authentication, allowing attackers to remotely plant malicious code on Ivanti’s Connect Secure, Policy Secure, and ZTA Gateways products. Ivanti warns of zero-day vulnerability in VPN appliances Disclosed on Wednesday, the cr…

Dataconomy

Ivanti warns: Critical zero-day in VPNs could leave networks wide open

Ivanti disclosed critical security vulnerability that has been actively exploited in zero-day attacks targeting its Connect Secure appliances.

Tech Monitor

Ivanti reports zero-day exploitation of Connect Secure vulnerability

Mandiant unveils a critical zero-day vulnerability in Ivanti Connect Secure VPN appliances, exploited since December 2024 by a suspected China-linked group.

SecurityBrief Australia

Mandiant reveals details of major Ivanti VPN vulnerability

U.S. software company Ivanti has disclosed a critical zero-day vulnerability affecting its widely used Connect Secure VPN appliance. The flaw, tracked as CVE-2025-0282, enables unauthenticated attackers to remotely deploy malicious code, potentially granting them access to sensitive corporate networks.  An Urgent Threat Ivanti, whose Connect Secure solution is a staple across industries for secure remote access, issued a warning on Wednesday fol…

Enterprise Sec Tech

Ivanti Zero-Day Vulnerability Exposes Corporate Networks to Active Exploits

A Chinese threat actor is once again exploiting Ivanti remote access devices at large. If you had a nickel for every high-profile vulnerability affecting Ivanti appliances last year, you’d have a lot of nickels. There was the critical authentication bypass in its Virtual Traffic Manager (vTM), the SQL injection bug in its Endpoint Manager, a trio affecting its Cloud Services Appliance (CSA), critical issues with its Standalone Sentry and Neurons…

Plato. Vertical Search. Ai. | PlatoAiStream. Data Intelligence. Vertical Search. Ai.

China's UNC5337 Exploits A Critical Ivanti RCE Bug, Again - Plato Data Intelligence

Do Secure-By-Design Pledges Come With Stickers? - Ivanti Connect Secure RCE (CVE-2025-0282) - watchTowr Labs

buaq.net

A critical security vulnerability in Ivanti Connect Secure VPN appliances has left 2,048 instances worldwide exposed to potential exploitation, with the United States hosting the highest number of vulnerable systems. The vulnerability tracked as CVE-2025-0282, has been actively exploited since mid-December 2024. The vulnerability is a critical stack-based buffer overflow with a CVSS score of 9.0 that allows unauthenticated remote code execution.…

cybernoz.com

2,048 Ivanti VPN Instances Vulnerable to Exploited Zero-Day Attacks

Ivanti announced on Wednesday that a new vulnerability, CVE-2025-0282, is being actively exploited by hackers in some customer environments. 
Our GERT team recently uncovered a sophisticated attack leveraging CVE-2023-48788, exploiting Fortinet FortiClient EMS. The attackers used advanced TTPs to infiltrate enterprise infrastructures, showcasing the critical need for proactive patch management and vigilant defense.… pic.twitter.com/rUxd5w4nkK — …

New zero-day exploit targets Ivanti VPN product

Coverage Details

Bias Distribution

Ownership

Similar News Topics

Similar News Topics