Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/catc0n/statuses/114315298784163741">Caitlin Condon (catc0n@infosec.exchange)'s status on Friday, 11-Apr-2025 04:25:10 JST</a><a href="https://infosec.exchange/@catc0n" title="catc0n@infosec.exchange"><img src="https://gnusocial.jp/avatar/237167-48-20240121172844.webp" width="48" height="48" alt="Caitlin Condon" style="position: absolute; left: 0; top: 0;">Caitlin Condon</a><div><ul><li></ul></div></section><article><p>Full analysis of Ivanti Connect Secure CVE-2025-22457 via <a href="https://bird.makeup/users/stephenfewer">@stephenfewer</a> — full RCE, exploitation non-trivial (at least as it stands now). </p><p>We should all be assuming that for any popular or high-profile technology, particularly network edge devices, adversaries have piles of software they're actively reverse engineering and developing complex exploit chains for, regardless of whether vulnerabilities are disclosed publicly as security issues or not. TAs are putting time, resources, and focus into learning the internals of *many* of these systems. If the technology industry broadly — and we ALL live in glass houses here — can't match that investment with expertise and evolution, I'm not sure we can expect the current attack landscape to improve. </p><p><a href="https://attackerkb.com/topics/0ybGQIkHzR/cve-2025-22457/rapid7-analysis" rel="nofollow">https://attackerkb.com/topics/0ybGQIkHzR/cve-2025-22457/rapid7-analysis</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4874902#notice-9548333">In conversation</a><time datetime="2025-04-11T04:25:10+09:00" title="Friday, 11-Apr-2025 04:25:10 JST">about a month ago</time> <span>from <span><a href="https://infosec.exchange/@catc0n/114315298784163741" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@catc0n/114315298784163741">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/4444833">Untitled attachment</a></label><br></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Caitlin Condon (catc0n@infosec.exchange)'s status on Friday, 11-Apr-2025 04:25:10 JSTCaitlin Condon
- Stephen Fewer
Full analysis of Ivanti Connect Secure CVE-2025-22457 via @stephenfewer — full RCE, exploitation non-trivial (at least as it stands now).
We should all be assuming that for any popular or high-profile technology, particularly network edge devices, adversaries have piles of software they're actively reverse engineering and developing complex exploit chains for, regardless of whether vulnerabilities are disclosed publicly as security issues or not. TAs are putting time, resources, and focus into learning the internals of *many* of these systems. If the technology industry broadly — and we ALL live in glass houses here — can't match that investment with expertise and evolution, I'm not sure we can expect the current attack landscape to improve.
https://attackerkb.com/topics/0ybGQIkHzR/cve-2025-22457/rapid7-analysis
In conversationabout a month ago from infosec.exchangepermalink
Attachments
1. Untitled attachment

Public

Embed Notice

HTML Code

Corresponding Notice