CVE-2025-22467

Summary

CVE-2025-22467 is a newly identified vulnerability that affects Ivanti Connect Secure before version 22.7R2.6. This issue involves a stack-based buffer overflow, allowing a remote, authenticated attacker to execute arbitrary code. Successful exploitation could result in significant system compromise and potential data loss or theft. Ivanti urges users to update to the latest version of Connect Secure to mitigate this risk. This vulnerability could be exploited through specially crafted input, posing a serious threat to organizations using the affected software.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.