Security News > 2025 > January > Zero-Day Vulnerability in Ivanti VPN

2025-01-09 17:16

It’s being actively exploited.

News URL

https://www.schneier.com/blog/archives/2025/01/zero-day-vulnerability-in-ivanti-vpn.html

#ivanti #VPN #vulnerability #zeroday

Related news

• Chinese hackers exploit Fortinet VPN zero-day to steal credentials (source)
• Ivanti warns of maximum severity CSA auth bypass vulnerability (source)
• Ivanti Connect Secure zero-day exploited by attackers (CVE-2025-0282) (source)
• Ivanti warns of new Connect Secure flaw used in zero-day attacks (source)
• Ivanti Connect Secure zero-day exploited since mid-December (CVE-2025-0282) (source)
• Zero-day exploits plague Ivanti Connect Secure appliances for second year running (source)
• Ivanti zero-day attacks infected devices with custom malware (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Ivanti		27	0	51	157	75	283