KEV Entry
CVE-2025-22457
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2025-04-04 00:00 UTC
Timestamps
2025-04-04
2025-04-04
Scope
KEVIntel entry: A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA... | Affected: Ivanti / Connect Secure, Policy Secure, Neurons for ZTA gateways | CVSS: 9.0 (CRITICAL) | EPSS: 0.10245 | Used in malware: yes | Not yet in CISA KEV: False
References
- {'id': 'CVE-2025-22457', 'url': 'https://www.cve.org/CVERecord?id=CVE-2025-22457'}
- {'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2025-22457'}
133b328d-4cdb-4462-8795-e3c2399051b6
caeb2787-0d58-4236-9039-7c86c3e566f3
2026-06-23 11:14 UTC
2026-06-23 11:14 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| public_report | kevintel | confirmed_compromise | 0.70 |
View details
|
- |