{"id":"CVE-2025-22457","details":"A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution.","modified":"2026-04-10T05:22:44.589896Z","published":"2025-04-03T16:15:35.370Z","references":[{"type":"WEB","url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22457"},{"type":"ADVISORY","url":"https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-22457.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"22.7"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-NA"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1\\.1"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1\\.2"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1\\.3"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1\\.4"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1\\.5"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r2"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r2\\.1"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r2\\.2"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r2\\.3"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r2\\.4"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r2\\.5"}]},{"events":[{"introduced":"0"},{"fixed":"22.7"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-NA"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1\\.1"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1\\.2"}]},{"events":[{"introduced":"0"},{"last_affected":"22.7-r1\\.3"}]},{"events":[{"introduced":"0"},{"fixed":"22.8"}]},{"events":[{"introduced":"0"},{"last_affected":"22.8-NA"}]},{"events":[{"introduced":"0"},{"last_affected":"22.8-r2\\.1"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}