Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/cR0w/statuses/114274805391775814">Santa Caws (cr0w@infosec.exchange)'s status on Friday, 04-Apr-2025 01:25:40 JST</a><a href="https://infosec.exchange/@cR0w" title="cr0w@infosec.exchange"><img src="https://gnusocial.jp/avatar/161036-48-20251126230605.webp" width="48" height="48" alt="Santa Caws" style="position: absolute; left: 0; top: 0;">Santa Caws</a></section><article><p>Go hack some more Ivanti shit. Someone else already has been.</p><p><a href="https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US" rel="nofollow">https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US</a></p><p>sev:CRIT 9.0 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H</p><p>A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution.</p><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-22457" rel="nofollow">https://nvd.nist.gov/vuln/detail/CVE-2025-22457</a></p><p>Edit to add:</p><p>We are aware of a limited number of customers whose Ivanti Connect Secure (22.7R2.5 or earlier) and End-of-Support Pulse Connect Secure 9.1x appliances have been exploited at the time of disclosure. Pulse Connect Secure 9.1x reached End-of-Support on December 31, 2024, and no longer receive code support or changes. </p><p><a href="https://infosec.exchange/tags/ivanti" rel="tag">#ivanti</a> <a href="https://infosec.exchange/tags/groundhogDay" rel="tag">#groundhogDay</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4839636#notice-9478081">In conversation</a><time datetime="2025-04-04T01:25:40+09:00" title="Friday, 04-Apr-2025 01:25:40 JST">about 9 months ago</time> <span>from <span><a href="https://infosec.exchange/@cR0w/114274805391775814" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@cR0w/114274805391775814">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Santa Caws (cr0w@infosec.exchange)'s status on Friday, 04-Apr-2025 01:25:40 JST Santa Caws
Go hack some more Ivanti shit. Someone else already has been.
https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US
sev:CRIT 9.0 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution.
https://nvd.nist.gov/vuln/detail/CVE-2025-22457
Edit to add:
We are aware of a limited number of customers whose Ivanti Connect Secure (22.7R2.5 or earlier) and End-of-Support Pulse Connect Secure 9.1x appliances have been exploited at the time of disclosure. Pulse Connect Secure 9.1x reached End-of-Support on December 31, 2024, and no longer receive code support or changes.
#ivanti #groundhogDay
In conversationabout 9 months ago from infosec.exchangepermalink

Public

Embed Notice

HTML Code

Corresponding Notice