CVE-2025-0282: Ivanti Connect Secure Stack Buffer Overflow

CRITICAL
9CRITICAL
Published: 2025-01-08Affected: Ivanti Connect Secure < 22.7R2.5CWE-121

Is Ivanti Connect Secure VPN vulnerable?

A stack-based buffer overflow in Ivanti Connect Secure VPN that allows unauthenticated remote attackers to achieve code execution. Exploited as a zero-day to deploy web shells and steal VPN credentials.

Impact & Exploitation

Actively exploited by Chinese nation-state actors (UNC5337). Enabled persistent access to VPN infrastructure and lateral movement into corporate networks.

How Precogs AI Detects Ivanti Connect Secure Stack Buffer Overflow

Precogs AI Binary SAST analyzes VPN appliance firmware for stack buffer overflow conditions, detecting vulnerable code patterns in embedded network devices.

Scan for CVE-2025-0282

Related Resources

🔍 Related CWE Entries

📖 Security Guides

🔗 External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS9
SeverityCRITICAL
CWECWE-121
Published2025-01-08

Tags

vpnfirmwarezero-daynation-state

Quick Links

Is your system affected?

Precogs AI detects Ivanti Connect Secure Stack Buffer Overflow in compiled binaries and firmware — even without source code.

Request Deep Analysis