Kevin Beaumont on Nostr: Ivanti Connect Secure, Policy Secure & ZTA Gateways customers, it's time to upgrade ...
Ivanti Connect Secure, Policy Secure & ZTA Gateways customers, it's time to upgrade again as there's another two zero days already being exploited in the wild - CVE-2025-0282 and CVE-2025-0283
Unauth code execution.
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-0282-CVE-2025-0283?language=en_US
ASLR prevents buffy overflow attacks, which these vulns are. However only about 5% of binaries in Ivanti's 'secure' Linux appliance have ASLR enabled - a two decade old security control. #yolosec https://infosec.exchange/@wdormann/113794200056523116
Unauth code execution.
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-0282-CVE-2025-0283?language=en_US
ASLR prevents buffy overflow attacks, which these vulns are. However only about 5% of binaries in Ivanti's 'secure' Linux appliance have ASLR enabled - a two decade old security control. #yolosec https://infosec.exchange/@wdormann/113794200056523116