Filter

Ivanti Connect Secure (ICS) VPNExternal control of a file name in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy S…

critical
9.1
First published (updated )
CVE-2024-38657

BleepingComputerIvanti fixes three critical flaws in Connect Secure & Policy Secure

First published (updated )
News
BleepingComputer

Ivanti Connect Secure (ICS) VPNCleartext storage of information in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy …

medium
6
First published (updated )
CVE-2024-13843

Ivanti Connect Secure (ICS) VPNA hardcoded key in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before ver…

medium
6
First published (updated )
CVE-2024-13842

Ivanti Connect Secure (ICS) VPNXSS

medium
6.1
First published (updated )
CVE-2024-13830

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti Connect Secure (ICS) VPNExternal control of a file name in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy S…

medium
6.8
First published (updated )
CVE-2024-12058

Ivanti Connect Secure (ICS) VPNCode Injection

critical
9.1
First published (updated )
CVE-2024-10644

Ivanti Connect Secure (ICS) VPNBuffer Overflow

critical
9.9
First published (updated )
CVE-2025-22467

Exploitation Walkthrough and Techniques - Ivanti Connect Secure RCE (CVE-2025-0282) - watchTowr Labs

First published (updated )
Social
reddit

Dark ReadingThreat Actors Exploit a Critical Ivanti RCE Bug, Again

Exploited
First published (updated )
News
Dark Reading

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Do Secure-By-Design Pledges Come With Stickers? - Ivanti Connect Secure RCE (CVE-2025-0282) - watchTowr Labs

First published (updated )
Social
reddit

Ivanti Connect Secure (ICS) VPNBuffer Overflow

high
7
Exploited
EPSS
0.04%
First published (updated )
CVE-2025-0283

Ivanti Connect Secure (ICS) VPNIvanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability

critical
9
Exploited
EPSS
15.32%
Trending
Year
First published (updated )
CVE-2025-0282

Ivanti Connect Secure (ICS) VPNAn out-of-bounds read in IPsec of Ivanti Connect Secure before version 22.7R2.1 allows a remote unau…

high
7.5
First published (updated )
CVE-2024-37401

Ivanti Connect Secure (ICS) VPNBuffer Overflow

high
7.5
First published (updated )
CVE-2024-37377

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti Connect Secure (ICS) VPNCommand Injection

critical
9.1
First published (updated )
CVE-2024-11634

Ivanti Connect Secure (ICS) VPNArgument injection in Ivanti Connect Secure before version 22.7R2.4 allows a remote authenticated at…

critical
9.1
First published (updated )
CVE-2024-11633

Ivanti Connect Secure (ICS) VPNInsufficient server-side controls in Secure Application Manager of Ivanti Connect Secure before vers…

high
8.8
EPSS
0.04%
First published (updated )
CVE-2024-9844

Ivanti Connect Secure (ICS) VPNArgument injection in Ivanti Connect Secure before version 22.7R2.1 and 9.1R18.9 and Ivanti Policy S…

critical
9.1
First published (updated )
CVE-2024-38655

Ivanti Connect Secure (ICS) VPNArgument injection in Ivanti Connect Secure before version 22.7R2.1 and 9.1R18.7 and Ivanti Policy S…

critical
9.1
First published (updated )
CVE-2024-39710

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti Connect Secure (ICS) VPNArgument injection in Ivanti Connect Secure before version 22.7R2.1 and 9.1R18.7 and Ivanti Policy S…

critical
9.1
First published (updated )
CVE-2024-39711

Ivanti Connect Secure (ICS) VPNAn out-of-bounds write in IPsec of Ivanti Connect Secure before version 22.7R2.1(Not Applicable to 9…

high
7.5
First published (updated )
CVE-2024-38649

Ivanti Connect Secure (ICS) VPNIncorrect file permissions in Ivanti Connect Secure before version 22.6R2 (Not Applicable to 9.1Rx) …

high
7.8
First published (updated )
CVE-2024-39709

Ivanti Connect Secure (ICS) VPNArgument injection in Ivanti Connect Secure before version 22.7R2.2 and 9.1R18.9 and Ivanti Policy S…

critical
9.1
First published (updated )
CVE-2024-38656

Ivanti Connect Secure (ICS) VPNArgument injection in Ivanti Connect Secure before version 22.7R2.1 and 9.1R18.7 and Ivanti Policy S…

critical
9.1
First published (updated )
CVE-2024-39712

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti Connect Secure (ICS) VPNAn out of bounds read in Ivanti Connect Secure before version 22.7R2.3 allows a remote unauthenticat…

high
7.5
First published (updated )
CVE-2024-37400

Ivanti Connect Secure (ICS) VPNXSS

medium
6.1
First published (updated )
CVE-2024-11004

Ivanti Connect Secure (ICS) VPNOS Command Injection, Command Injection

critical
9.1
First published (updated )
CVE-2024-11005

Ivanti Connect Secure (ICS) VPNOS Command Injection, Command Injection

critical
9.1
First published (updated )
CVE-2024-11006

Ivanti Connect Secure (ICS) VPNOS Command Injection, Command Injection

critical
9.1
First published (updated )
CVE-2024-11007

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203