CVE-2025-0282CISA KEV: Actively Exploited

Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability

Published Jan 8, 2025·Updated Jan 8, 2025

Description

Ivanti Connect Secure, Policy Secure, and ZTA Gateways contain a stack-based buffer overflow which can lead to unauthenticated remote code execution.

Public Exploits & PoCs10 found

PoC: CVE-2025-0282

PoC for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways

4

PoC: CVE-2025-0282

Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282)

3

PoC: CVE-2025-0282-Full-version

# CVE-2025-0282: Remote Code Execution Vulnerability in [StorkS]

2

PoC: Blackash-CVE-2025-0282

CVE-2025-0282

PoC: Blackash-CVE-2025-0282

CVE-2025-0282

PoC: Ivanti-CVE-2025-0282

Ivanti Remote code execution

PoC: CVE-2025-0282

Ivanti Connect Secure, Policy Secure & ZTA Gateways - CVE-2025-0282

PoC: CVE-2025-0282

Exploit for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways

PoC: CVE-2025-0282-Ivanti-exploit

CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overflow exploit.

PoC: CVE-2025-0282-check

Safely detect if an Ivanti server is vulnerable to CVE-2025-0282

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free