Summary: Ivanti has reported that multiple customers are affected by a new vulnerability, CVE-2025-0282, which is currently being exploited by hackers. The vulnerabilities impact several Ivanti products widely used by government agencies and a patch is available for some of the affected systems.
Threat Actor: Unknown | unknown
Victim: Ivanti customers | Ivanti customers
Key Point :
- Two vulnerabilities, CVE-2025-0282 and CVE-2025-0283, have been identified in Ivanti’s products.
- Active exploitation of CVE-2025-0282 has been confirmed in some customer environments.
- Patches are available for Connect Secure, with others expected by January 21.
- The U.K. National Cyber Security Centre has issued warnings regarding active exploitation.
- Customers are advised to use an Integrity Checker Tool to assess potential attacks.
- Ivanti emphasizes the importance of not exposing devices to the internet to mitigate risks.
Source: https://therecord.media/ivanti-warns-of-hackers-exploiting-new-vulnerability
Views: 0