Heap-based Buffer Overflow in Ivanti Connect Secure, Policy Secure and ZTA Gateway
CVE-2025-5462

7.5HIGH

Key Information:

Vendor: Ivanti
Status: Connect Secure; Policy Secure; Zta Gateway; Neurons For Secure Access
Vendor: CVE Published:; 12 August 2025

What is CVE-2025-5462?

A heap-based buffer overflow vulnerability has been identified in various Ivanti products, including Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti ZTA Gateway. This flaw allows a remote unauthenticated attacker to exploit the affected systems, potentially leading to a denial of service condition. A fix was deployed on August 2, 2025, marking an important update for users to secure their systems.

Affected Version(s)

Connect Secure 22.7R2.8

Neurons for Secure Access 22.8R1.4 (Fix deployed on 02-Aug-2025)

Policy Secure 22.7R1.5

References

https://forums.ivanti.com/s/article/August-Security-Advis...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2025
Vulnerability Reserved
Jun 2, 2025