一、 漏洞 CVE-2025-0282 基础信息
漏洞信息
                                        # N/A

## 概述
Ivanti Connect Secure、Ivanti Policy Secure 和 Ivanti Neurons for ZTA gateways 存在一个基于堆栈的缓冲区溢出漏洞,该漏洞允许远程未认证攻击者执行远程代码。

## 影响版本
- Ivanti Connect Secure: 22.7R2.5 之前版本
- Ivanti Policy Secure: 22.7R1.2 之前版本
- Ivanti Neurons for ZTA gateways: 22.7R2.3 之前版本

## 细节
该漏洞是基于堆栈的缓冲区溢出,这意味着程序在受到超出其缓冲区大小的输入数据时可能导致内存破坏。攻击者可以通过发送特制的数据包触发此漏洞,从而导致程序崩溃或执行任意代码。

## 影响
远程未认证攻击者可以利用此漏洞在受影响系统上执行任意代码,可能会导致系统完全被控制。
提示
尽管我们采用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。
神龙会尽力确保数据准确,但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利!
漏洞标题
N/A
来源:美国国家漏洞数据库 NVD
漏洞描述信息
A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution.
来源:美国国家漏洞数据库 NVD
CVSS信息
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
来源:美国国家漏洞数据库 NVD
漏洞类别
栈缓冲区溢出
来源:美国国家漏洞数据库 NVD
漏洞标题
Ivanti多款产品 安全漏洞
来源:中国国家信息安全漏洞库 CNNVD
漏洞描述信息
Ivanti Connect Secure(ICS)等都是美国Ivanti公司的产品。Ivanti Connect Secure是一款安全远程网络连接工具。Ivanti Policy Secure(IPS)是一个网络访问控制 (NAC) 解决方案。Ivanti Neurons是一款开创性的平台,能简化和自动化IT系统。 Ivanti多款产品存在安全漏洞,该漏洞源于存在基于堆栈的缓冲区溢出问题。攻击者利用该漏洞可以远程执行代码。以下产品及版本受到影响:Ivanti Connect Secure 22.7R2
来源:中国国家信息安全漏洞库 CNNVD
CVSS信息
N/A
来源:中国国家信息安全漏洞库 CNNVD
漏洞类别
其他
来源:中国国家信息安全漏洞库 CNNVD
二、漏洞 CVE-2025-0282 的公开POC
# POC 描述 源链接 神龙链接
1 None https://github.com/securexploit1/CVE-2025-0282 POC详情
2 Ivanti (unsecure connect) zero click unauthenticated code execution https://github.com/NyxanGoat/CVE-2025-0282-PoC POC详情
3 Safely detect if an Ivanti server is vulnerable to CVE-2025-0282 https://github.com/BishopFox/CVE-2025-0282-check POC详情
4 CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overflow exploit. https://github.com/absholi7ly/CVE-2025-0282-Ivanti-exploit POC详情
5 # CVE-2025-0282: Remote Code Execution Vulnerability in [StorkS] https://github.com/anonzoli/CVE-2025-0282-Full-version POC详情
6 # CVE-2025-0282: Remote Code Execution Vulnerability in [StorkS] https://github.com/AnonStorks/CVE-2025-0282-Full-version POC详情
7 Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282) https://github.com/watchtowrlabs/CVE-2025-0282 POC详情
8 PoC for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways https://github.com/sfewer-r7/CVE-2025-0282 POC详情
9 Exploit for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways https://github.com/chiefchainer/CVE-2025-0282 POC详情
10 Ivanti Connect Secure, Policy Secure & ZTA Gateways - CVE-2025-0282 https://github.com/AdaniKamal/CVE-2025-0282 POC详情
11 None https://github.com/44xo/CVE-2025-0282 POC详情
12 Exploit for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways https://github.com/almanatra/CVE-2025-0282 POC详情
13 Ivanti Remote code execution https://github.com/punitdarji/Ivanti-CVE-2025-0282 POC详情
14 CVE-2025-0282 https://github.com/B1ack4sh/Blackash-CVE-2025-0282 POC详情
15 Ivanti Connect Secure < 22.7R2.5, Ivanti Policy Secure < 22.7R1.2, and Ivanti Neurons for ZTA gateways < 22.7R2.3 contain a stack-based buffer overflow in the clientCapabilities parameter handling. This vulnerability allows remote unauthenticated attackers to execute arbitrary code through IF-T TLS requests. https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2025/CVE-2025-0282.yaml POC详情
三、漏洞 CVE-2025-0282 的情报信息
四、漏洞 CVE-2025-0282 的评论

暂无评论

发表评论