Skip to content

Module for Ivanti Connect Secure RCE (CVE-2025-22457) #20025

New issue
New issue
Open
Open
Module for Ivanti Connect Secure RCE (CVE-2025-22457)#20025
Assignees
cdelafuente-r7
Labels
modulesuggestion-featureNew feature suggestions
@cdelafuente-r7

Description

@cdelafuente-r7
cdelafuente-r7
opened on Apr 11, 2025

Description

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution.

https://attackerkb.com/topics/0ybGQIkHzR/cve-2025-22457/rapid7-analysis

Metadata

Metadata

Assignees

Labels

modulesuggestion-featureNew feature suggestions

Type

No type

Projects

Metasploit Kanban

Status

Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions