Ivanti released a patch for a critical severity flaw in Neurons for ITSM The flaw can be abused to gain admin rights on target systems There is no evidence of abuse in the wild Ivanti has patched ...

IT software company Ivanti released emergency patches for its enterprise mobile device management (MDM) solution after learning of in-the-wild attacks exploiting two previously unknown ...

Ivanti warned customers today to patch their Ivanti Endpoint Manager Mobile (EPMM) software against two security vulnerabilities chained in attacks to gain remote code execution.

Ivanti said CVE-2025-22457 was exploited in attacks on Ivanti Connect Secure and end-of-support Pulse Connect Secure 9.1x appliances affecting a "limited number of customers." ...

In the real world, Ivanti said, a limited number of users of its Connect Secure appliances have been affected by CVE-2025-0282 as of Thursday 9 January 2025.

Ivanti has released a patch for Connect Secure to fix CVE-2025-0282 and CVE-2025-0283, a second vulnerability disclosed in conjunction. Few technical details are available about the latter flaw.

Ivanti uncovers two security vulnerabilities, including one critical-severity One of the flaws was being abused as a zero-day by a Chinese threat actor ...

The software maker announced that a stack-based buffer overflow flaw in its VPN appliance has been exploited in the wild. Ivanti Policy Secure and Ivanti Neurons for ZTA gateways are also impacted.

Today, Ivanti urged customers to patch a critical authentication bypass vulnerability impacting Virtual Traffic Manager (vTM) appliances that can let attackers create rogue administrator accounts.

Ivanti also denied allegations that the Connect Secure product was vulnerable due to old Linux code, although it has been helping customers move off unsupported older versions over the past 18 months.

Thousands of Ivanti gateways appear to be heavily exploited by threat actors. According to the latest report, it was on Jan. 10 when the vulnerability was disclosed as zero-day.

Ivanti Secure VPN is a popular remote access VPN solution used by businesses, organizations and governments worldwide. Unfortunately, five new zero-day vulnerabilities in Ivanti have been ...