Local Authentication Vulnerability in Ivanti Workspace Control Products

CVE-2025-22463

What is CVE-2025-22463?

A local authentication vulnerability has been identified in Ivanti Workspace Control, specifically affecting versions before 10.19.10.0. This vulnerability arises from a hardcoded key that enables an authenticated local attacker to decrypt sensitive data, including the stored environment password. If exploited, this could potentially expose critical information and compromise the security of the application. Users and administrators are strongly advised to upgrade to the latest version to mitigate risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

News Articles

GBHackers News

CVE-2025-5353CVE-2025-22463

Ivanti Workspace Control Vulnerability Lets Attackers Remotely Exploit To Steal the Credential

Ivanti has released a critical security update for its Workspace Control software, patching three high-severity vulnerabilities that could allow attackers to compromise sensitive credentials.

References