CVE-2025-0282 PoC — Ivanti多款产品 安全漏洞

Source

Associated Vulnerability

Description

Exploit for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways

Readme

# PoC for CVE-2025-0282 
**Remote Unauthenticated Stack Buffer Overflow in Ivanti Products**

## Overview
This proof-of-concept demonstrates exploitation of CVE-2025-0282, a critical vulnerability affecting:
- Ivanti Connect Secure
- Ivanti Policy Secure 
- Ivanti Neurons for ZTA gateways

Based on [watchTowr's research](https://labs.watchtowr.com/exploitation-walkthrough-and-techniques-ivanti-connect-secure-rce-cve-2025-0282), this PoC uses a ROP chain targeting **Ivanti Connect Secure 22.7r2.4** specifically. Other versions require custom ROP chain development.

The payload creates a new privileged admin account with:
- Username: `admin`
- Password: `password`
- Root-level privileges (UID 0)

## Prerequisites
- Python 3.x
- Required packages: `requests`, `pyopenssl`
- Vulnerable Ivanti system (version 22.7r2.4)

## Usage
1. Run the exploit:
```bash
python3 CVE-2025-0282.py -t <TARGET_IP> -p 443

File Snapshot

 [4.0K]  /data/pocs/d81f92d8292130b56e02d25cd27f5a5d933c96d4
├── [5.8K]  CVE-2025-0282.py
└── [ 910]  README.md

0 directories, 2 files

Remarks