CVE-2025-0282: Ivanti Connect Secure Stack Buffer Overflow

Score: 9
CRITICAL
Published: 2025-01-08Affected: Ivanti Connect Secure < 22.7R2.5CWE-121 β†—

Is Ivanti Connect Secure VPN vulnerable?

A stack-based buffer overflow in Ivanti Connect Secure VPN that allows unauthenticated remote attackers to achieve code execution. Exploited as a zero-day to deploy web shells and steal VPN credentials.

Impact & Exploitation

Actively exploited by Chinese nation-state actors (UNC5337). Enabled persistent access to VPN infrastructure and lateral movement into corporate networks.

Related Resources

πŸ” Related CWE Entries

πŸ“– Security Guides

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS9
SeverityCRITICAL
CWECWE-121
Published2025-01-08

Tags

vpnfirmwarezero-daynation-state

Quick Links

Is your system affected?

Precogs AI detects Ivanti Connect Secure Stack Buffer Overflow in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2025-0282 Ivanti Connect Secure Stack Buffer Overflow don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo