The CVE-2025-22457 has already been exploited by a China-nexus hacking gang notorious for breaking into edge network devices.

The Shadowserver Foundation found 5,113 Ivanti VPN instances that are vulnerable to CVE-2025-22457, a critical stack-based ...

CVE-2025-22457 is a critical stack buffer-overflow vulnerability. Ivanti had initially assessed as a low-level product bug ...

Ivanti has recently patched a critical severity vulnerability found in its Connect Secure (ICS) VPN appliances which was allegedly being abused in the wild by Chinese state-sponsored actors.

Chinese APT group UNC5221 appears to have studied a recent Ivanti Connect Secure patch to develop a remote code execution ...

More than 5,000 Ivanti Connect Secure appliances are vulnerable to attacks exploiting CVE-2025-22457, which has been used by Chinese hackers.

IT software vendor Ivanti recently released details of a now-patched critical security vulnerability affecting Ivanti Connect ...

Ivanti has misjudged a bug in the VPN software Connect Secure. This is a security vulnerability that is under attack.

Hackers using Trojans connected to a malware family deployed by Chinese nation-state hackers are actively exploiting a ...

Sophisticated attacks must be tracked and contained in a business's core security infrastructure, managed from its SOC.

A suspected Chinese cyberespionage operation is behind a spate of malware left on VPN appliances made by Ivanti. The threat ...

Several vulnerabilities jeopardize systems with Ivanti Endpoint Manager. Security patches are available for download.