Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability — CVE-2025-22457
CISA KEV · Ivanti · CVE-2025-22457
ID
CVE-2025-22457
CVE-2025-22457
Date
Activity
Source
CISA KEV
CISA KEV
Vendor
Ivanti
Ivanti
Threat
critical
critical
EPSS
0.5103
0.5103
Exploited
Yes
Yes
Summary
CVE-2025-22457 is a advisory from CISA KEV. Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability Vendor: Ivanti. Severity/Threat: critical. This item is marked as actively exploited.
Product
Connect Secure, Policy Secure, and ZTA Gateways
What to do
General, cautious steps (verify details in the official source):
- Prioritize patching or mitigation immediately (treat as actively risky).
- Identify affected product versions in your inventory and verify whether you are impacted.
- Apply vendor patches/updates or recommended mitigations as soon as available.
- Check logs/telemetry for indicators of compromise and suspicious activity.
- Consider temporary hardening: restrict access, reduce attack surface, and monitor aggressively.
- Read the official advisory for exact affected versions and remediation steps.