Ivanti Connect Secure VPN Zero-Day Exploitation (CVE-2025-0282)
Ivanti has reported two vulnerabilities, CVE-2025-0282 and CVE-2025-0283, affecting Ivanti Connect Secure (ICS) VPN appliances. Mandiant has observed active exploitation
Read MoreIvanti
Multiple vulnerabilities in Ivanti EPMM
Ivanti released a security advisory addressing several vulnerabilities in its EPMM solution (formerly known as MobileIron). These vulnerabilities could lead
Read More
Ivanti Avalanche WLInfoRailService Heap-based Buffer Overflow Remote Code Execution Vulnerability [CVE-2024-24996]
CVE number – CVE-2024-24996 CVSS Score – 9.8 This vulnerability allows remote attackers to execute arbitrary code on affected installations
Read More
MITRE hacked via Ivanti zero-day vulnerabilities
In January, nation-state hackers breached The MITRE Corporation, a non-profit responsible for overseeing federally funded research. Exploiting two zero-day vulnerabilities
Read More
Exploitation of vulnerabilities affecting Ivanti Connect Secure and Ivanti Policy Secure
Ivanti has published an advisory detailing two vulnerabilities affecting Connect Secure and Policy Secure gateways. Ivanti is aware that both vulnerabilities are
Read More
Ivanti Avalanche Remote Control Server RCServlet Authentication Bypass Vulnerability (CVE-2022-44574)
CVE number – CVE-2022-44574 This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche. Authentication is
Read More