Security News > 2025 > January > Zero-Day Vulnerability in Ivanti VPN

2025-01-09 17:16

It’s being actively exploited.

News URL

https://www.schneier.com/blog/archives/2025/01/zero-day-vulnerability-in-ivanti-vpn.html

#ivanti #VPN #vulnerability #zeroday

Related news

• Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457) (source)
• Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks (source)
• Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
• Ivanti patches Connect Secure zero-day exploited since mid-March (source)
• PipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy Ransomware (source)
• DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Ivanti		29	1	56	184	81	322