What is the severity of CVE-2025-0283?

CVE-2025-0283 has a high severity due to its exploitation potential for privilege escalation by a local authenticated attacker.

How do I fix CVE-2025-0283?

To mitigate CVE-2025-0283, upgrade Ivanti Connect Secure to version 22.7R2.5, Ivanti Policy Secure to version 22.7R1.2, or Ivanti Neurons for ZTA gateways to version 22.7R2.3.

What types of systems are affected by CVE-2025-0283?

CVE-2025-0283 affects Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways before certain patched versions.

Can CVE-2025-0283 be exploited remotely?

No, CVE-2025-0283 can only be exploited by a local authenticated attacker.

What are the potential consequences of exploiting CVE-2025-0283?

Exploitation of CVE-2025-0283 can lead to unauthorized privilege escalation, allowing attackers to gain elevated access rights on the affected systems.

Vulnerability/
CVE-2025-0283

Exploited

high

CWE

121 119 787

EPSS

0.043%

8/1/2025

14/1/2025

CVE-2025-0283: Buffer Overflow

First published: Wed Jan 08 2025(Updated: )

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a local authenticated attacker to escalate their privileges.

Credit: 3c1d8aa1-5a33-4ea4-8992-aadd6440af75

Affected Software	Affected Version	How to fix
Ivanti Connect Secure	<9.1
Ivanti Connect Secure	>=22.2<22.7
Ivanti Connect Secure	=9.1
Ivanti Connect Secure	=9.1-r1
Ivanti Connect Secure	=9.1-r1.0
Ivanti Connect Secure	=9.1-r10
Ivanti Connect Secure	=9.1-r10.0
Ivanti Connect Secure	=9.1-r10.2
Ivanti Connect Secure	=9.1-r11
Ivanti Connect Secure	=9.1-r11.0
Ivanti Connect Secure	=9.1-r11.1
Ivanti Connect Secure	=9.1-r11.3
Ivanti Connect Secure	=9.1-r11.4
Ivanti Connect Secure	=9.1-r11.5
Ivanti Connect Secure	=9.1-r12
Ivanti Connect Secure	=9.1-r12.1
Ivanti Connect Secure	=9.1-r12.2
Ivanti Connect Secure	=9.1-r13
Ivanti Connect Secure	=9.1-r13.1
Ivanti Connect Secure	=9.1-r14
Ivanti Connect Secure	=9.1-r14.4
Ivanti Connect Secure	=9.1-r15
Ivanti Connect Secure	=9.1-r15.2
Ivanti Connect Secure	=9.1-r16
Ivanti Connect Secure	=9.1-r16.1
Ivanti Connect Secure	=9.1-r17
Ivanti Connect Secure	=9.1-r17.1
Ivanti Connect Secure	=9.1-r17.2
Ivanti Connect Secure	=9.1-r18
Ivanti Connect Secure	=9.1-r18.1
Ivanti Connect Secure	=9.1-r18.2
Ivanti Connect Secure	=9.1-r18.3
Ivanti Connect Secure	=9.1-r18.7
Ivanti Connect Secure	=9.1-r18.8
Ivanti Connect Secure	=9.1-r18.9
Ivanti Connect Secure	=9.1-r4.3
Ivanti Connect Secure	=9.1-r8
Ivanti Connect Secure	=21.9-r1
Ivanti Connect Secure	=21.12-r1
Ivanti Connect Secure	=22.1-r1
Ivanti Connect Secure	=22.1-r6
Ivanti Connect Secure	=22.7
Ivanti Connect Secure	=22.7-r1
Ivanti Connect Secure	=22.7-r1.1
Ivanti Connect Secure	=22.7-r1.2
Ivanti Connect Secure	=22.7-r1.3
Ivanti Connect Secure	=22.7-r1.4
Ivanti Connect Secure	=22.7-r1.5
Ivanti Connect Secure	=22.7-r2
Ivanti Connect Secure	=22.7-r2.1
Ivanti Connect Secure	=22.7-r2.2
Ivanti Connect Secure	=22.7-r2.3
Ivanti Connect Secure	=22.7-r2.4
Ivanti Neurons for Zero-Trust Access
Ivanti Neurons for Zero-Trust Access	=22.2-r1
Ivanti Neurons for Zero-Trust Access	=22.2-r4
Ivanti Neurons for Zero-Trust Access	=22.2-r5
Ivanti Neurons for Zero-Trust Access	=22.3-r1
Ivanti Neurons for Zero-Trust Access	=22.3-r4
Ivanti Neurons for Zero-Trust Access	=22.4-r1
Ivanti Neurons for Zero-Trust Access	=22.4-r3
Ivanti Neurons for Zero-Trust Access	=22.5-r1
Ivanti Neurons for Zero-Trust Access	=22.5-r1.2
Ivanti Neurons for Zero-Trust Access	=22.6-r1
Ivanti Neurons for Zero-Trust Access	=22.6-r1.2
Ivanti Neurons for Zero-Trust Access	=22.6-r1.3
Ivanti Neurons for Zero-Trust Access	=22.6-r1.5
Ivanti Neurons for Zero-Trust Access	=22.6-r1.6
Ivanti Neurons for Zero-Trust Access	=22.6-r1.7
Ivanti Neurons for Zero-Trust Access	=22.7-r1
Ivanti Neurons for Zero-Trust Access	=22.7-r1.2
Ivanti Neurons for Zero-Trust Access	=22.7-r1.3
Ivanti Neurons for Zero-Trust Access	=22.7-r1.4
Ivanti Neurons for Zero-Trust Access	=22.7-r1.5
Ivanti Neurons for Zero-Trust Access	=22.7-r1.6
Ivanti Neurons for Zero-Trust Access	=22.7-r2
Ivanti Neurons for Zero-Trust Access	=22.7-r2.2
Ivanti Neurons for Zero-Trust Access	=22.7-r2.3
Ivanti Policy Secure	<22.7
Ivanti Policy Secure	=22.7
Ivanti Policy Secure	=22.7-r1
Ivanti Policy Secure	=22.7-r1.1
Ivanti Policy Secure	=22.7-r1.2

Never miss a vulnerability like this again

Reference Links

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2025-0282

Frequently Asked Questions

What is the severity of CVE-2025-0283?
CVE-2025-0283 has a high severity due to its exploitation potential for privilege escalation by a local authenticated attacker.
How do I fix CVE-2025-0283?
To mitigate CVE-2025-0283, upgrade Ivanti Connect Secure to version 22.7R2.5, Ivanti Policy Secure to version 22.7R1.2, or Ivanti Neurons for ZTA gateways to version 22.7R2.3.
What types of systems are affected by CVE-2025-0283?
CVE-2025-0283 affects Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways before certain patched versions.
Can CVE-2025-0283 be exploited remotely?
No, CVE-2025-0283 can only be exploited by a local authenticated attacker.
What are the potential consequences of exploiting CVE-2025-0283?
Exploitation of CVE-2025-0283 can lead to unauthorized privilege escalation, allowing attackers to gain elevated access rights on the affected systems.

collector/bleeping-computer
source/BleepingComputer
alias/CVE-2025-0282
alias/CVE-2025-0283
agent/type
agent/description
agent/first-publish-date
agent/severity
agent/author
collector/the-register
source/The Register
collector/darkreading
source/Dark Reading
agent/references
agent/trending
collector/mitre-cve
source/MITRE
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/weakness
agent/last-modified-date
agent/softwarecombine
agent/event
agent/source
agent/tags
collector/epss-latest
source/FIRST
agent/epss
agent/news-ai
exploited/true
vendor/ivanti
canonical/ivanti connect secure
version/ivanti connect secure/22.2
version/ivanti connect secure/9.1
version/ivanti connect secure/9.1-r1
version/ivanti connect secure/9.1-r1.0
version/ivanti connect secure/9.1-r10
version/ivanti connect secure/9.1-r10.0
version/ivanti connect secure/9.1-r10.2
version/ivanti connect secure/9.1-r11
version/ivanti connect secure/9.1-r11.0
version/ivanti connect secure/9.1-r11.1
version/ivanti connect secure/9.1-r11.3
version/ivanti connect secure/9.1-r11.4
version/ivanti connect secure/9.1-r11.5
version/ivanti connect secure/9.1-r12
version/ivanti connect secure/9.1-r12.1
version/ivanti connect secure/9.1-r12.2
version/ivanti connect secure/9.1-r13
version/ivanti connect secure/9.1-r13.1
version/ivanti connect secure/9.1-r14
version/ivanti connect secure/9.1-r14.4
version/ivanti connect secure/9.1-r15
version/ivanti connect secure/9.1-r15.2
version/ivanti connect secure/9.1-r16
version/ivanti connect secure/9.1-r16.1
version/ivanti connect secure/9.1-r17
version/ivanti connect secure/9.1-r17.1
version/ivanti connect secure/9.1-r17.2
version/ivanti connect secure/9.1-r18
version/ivanti connect secure/9.1-r18.1
version/ivanti connect secure/9.1-r18.2
version/ivanti connect secure/9.1-r18.3
version/ivanti connect secure/9.1-r18.7
version/ivanti connect secure/9.1-r18.8
version/ivanti connect secure/9.1-r18.9
version/ivanti connect secure/9.1-r4.3
version/ivanti connect secure/9.1-r8
version/ivanti connect secure/21.9-r1
version/ivanti connect secure/21.12-r1
version/ivanti connect secure/22.1-r1
version/ivanti connect secure/22.1-r6
version/ivanti connect secure/22.7
version/ivanti connect secure/22.7-r1
version/ivanti connect secure/22.7-r1.1
version/ivanti connect secure/22.7-r1.2
version/ivanti connect secure/22.7-r1.3
version/ivanti connect secure/22.7-r1.4
version/ivanti connect secure/22.7-r1.5
version/ivanti connect secure/22.7-r2
version/ivanti connect secure/22.7-r2.1
version/ivanti connect secure/22.7-r2.2
version/ivanti connect secure/22.7-r2.3
version/ivanti connect secure/22.7-r2.4
canonical/ivanti neurons for zero-trust access
version/ivanti neurons for zero-trust access/22.2-r1
version/ivanti neurons for zero-trust access/22.2-r4
version/ivanti neurons for zero-trust access/22.2-r5
version/ivanti neurons for zero-trust access/22.3-r1
version/ivanti neurons for zero-trust access/22.3-r4
version/ivanti neurons for zero-trust access/22.4-r1
version/ivanti neurons for zero-trust access/22.4-r3
version/ivanti neurons for zero-trust access/22.5-r1
version/ivanti neurons for zero-trust access/22.5-r1.2
version/ivanti neurons for zero-trust access/22.6-r1
version/ivanti neurons for zero-trust access/22.6-r1.2
version/ivanti neurons for zero-trust access/22.6-r1.3
version/ivanti neurons for zero-trust access/22.6-r1.5
version/ivanti neurons for zero-trust access/22.6-r1.6
version/ivanti neurons for zero-trust access/22.6-r1.7
version/ivanti neurons for zero-trust access/22.7-r1
version/ivanti neurons for zero-trust access/22.7-r1.2
version/ivanti neurons for zero-trust access/22.7-r1.3
version/ivanti neurons for zero-trust access/22.7-r1.4
version/ivanti neurons for zero-trust access/22.7-r1.5
version/ivanti neurons for zero-trust access/22.7-r1.6
version/ivanti neurons for zero-trust access/22.7-r2
version/ivanti neurons for zero-trust access/22.7-r2.2
version/ivanti neurons for zero-trust access/22.7-r2.3
canonical/ivanti policy secure
version/ivanti policy secure/22.7
version/ivanti policy secure/22.7-r1
version/ivanti policy secure/22.7-r1.1
version/ivanti policy secure/22.7-r1.2