Ivanti has revealed information regarding a recently fixed significant security flaw affecting its Connect Secure, which has been actively exploited in real-world scenarios.
The flaw, identified as CVE-2025-22457 (CVSS rating: 9.0), pertains to a scenario of stack-based buffer overflow that could be leveraged to run arbitrary code on the impacted systems.
“A stack-based buffer overflow in Ivanti Connect