Ivanti has disclosed details of a now-patched critical security vulnerability impacting its Connect Secure product that has come under active exploitation in the wild.
The vulnerability, tracked as CVE-2025-22457 (CVSS score: 9.0), concerns a case of a stack-based buffer overflow that could be exploited to execute arbitrary code on affected systems.
“A stack-based buffer overflow in Ivanti
Related Post
- April 8, 2025
Cryptocurrency Miner and Clipper Malware Spread via SourceForge
Threat actors have been observed distributing malicious payloads such as cryptocurrency miner and clipper malware via SourceForge, a popular software
- April 8, 2025
Arguing Against CALEA
At a Congressional hearing earlier this week, Matt Blaze made the point that CALEA, the 1994 law that forces telecoms
- April 8, 2025
Fortinet Urges FortiSwitch Upgrades to Patch Critical Admin
Fortinet has released security updates to address a critical security flaw impacting FortiSwitch that could permit an attacker to make
- April 8, 2025
Amazon EC2 SSM Agent Flaw Patched After Privilege
Cybersecurity researchers have disclosed details of a now-patched security flaw in the Amazon EC2 Simple Systems Manager (SSM) Agent that,
- April 8, 2025
Cryptocurrency Miner and Clipper Malware Spread via SourceForge
Threat actors have been observed distributing malicious payloads such as cryptocurrency miner and clipper malware via SourceForge, a popular software
- April 8, 2025
Arguing Against CALEA
At a Congressional hearing earlier this week, Matt Blaze made the point that CALEA, the 1994 law that forces telecoms
- April 8, 2025
Fortinet Urges FortiSwitch Upgrades to Patch Critical Admin
Fortinet has released security updates to address a critical security flaw impacting FortiSwitch that could permit an attacker to make
- April 8, 2025
Amazon EC2 SSM Agent Flaw Patched After Privilege
Cybersecurity researchers have disclosed details of a now-patched security flaw in the Amazon EC2 Simple Systems Manager (SSM) Agent that,
prev
next
Leave feedback about this