CNNVD-202507-1022 Information

Jul 08, 2025 cve

CNNVD ID

CNNVD-202507-1022

CVE-2025-5451

CNNVD Published: 2025-07-08

Description (Chinese)

Ivanti Connect Secure（ICS）是美国Ivanti公司的一款安全远程网络连接工具。 Ivanti Connect Secure 22.7R2.8之前版本和Ivanti Policy Secure 22.7R1.5之前版本存在安全漏洞，该漏洞源于栈缓冲区溢出，可能导致拒绝服务。

Description (English)

Ivanti Contact Security (ICS) is a secure remote network connection tool for Ivanti, USA. There is a security loophole in previous versions of Ivanti Connect Security 22.7R2.8 and before Ivanti Policy 22.7R1.5, which stems from the spilling out of the buffer zone and may lead to the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

iWT

Published

2025-07-08

Last Modified

2026-02-24

References

https://forums.ivanti.com/s/article/July-Security-Advisory-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure-Multiple-CVEs https://access.redhat.com/security/cve/cve-2025-5451

Patch

https://forums.ivanti.com/s/article/July-Security-Advisory-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure-Multiple-CVEs

Share on: