vulnerability:exploitability=industrialised vulnerability:information=PoC
Created on 2025-04-11 07:47 and updated on 2025-04-11 07:47.
Description
PoC for CVE-2025-22457
A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Pulse Connect Secure, Ivanti Policy Secure, and ZTA Gateways
Overview
This is a proof of concept exploit to demonstrate exploitation of CVE-2025-22457. For a complete technical analysis of the vulnerability and exploitation strategy, please see our Rapid7 Analysis here:
https://attackerkb.com/topics/0ybGQIkHzR/cve-2025-22457/rapid7-analysis
Available at https://github.com/sfewer-r7/CVE-2025-22457
Associated vulnerability
CVE-2025-22457Related vulnerabilities
Meta
[ { tags: [ "vulnerability:exploitability=industrialised", "vulnerability:information=PoC", ], }, ]