Ivanti Warns of Active Exploitation of a Vulnerability in Connect Secure
informationsecuritybuzz.com
Organizations are urged to act swiftly to address vulnerabilities impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways by sticking to the latest guidance from the vendor.
Ivanti has released a critical security update addressing these vulnerabilities, identified as CVE-2025-0282 and CVE-2025-0283. The fix is now available via Ivanti’s standard download portal.
The company disclosed that a limited number of Ivanti Connect Secure appliances were exploited through CVE-2025-0282 at the time of disclosure. However, it says there is no evidence that the vulnerabilities have been exploited in Ivanti Policy Secure or Neurons for ZTA gateways.
Swift Response and Collaboration
Threat actor activity linked to the exploit was detected using Ivanti’s Integrity Checker Tool (ICT) on the same day it happened. This enabled Ivanti to respond rapidly, develop a fix, and initiate collaboration with affected customers, security partners, and law enforcement agencies.
Ivanti is urging customers ...
Copyright of this story solely belongs to informationsecuritybuzz.com . To see the full text click HERE