CVE-2025-5451

Medium CVSS 4.9

Overview

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.8 and Ivanti Policy Secure before version 22.7R1.5 allows a remote authenticated attacker with admin rights to trigger a denial of service.

CWE: CWE-121 Published: 2025-07-08T15:15:31.817

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 4.9 (MEDIUM)
Detected tags: buffer, dos (tag impact: LOW)

Recommended actions:

Rate limiting, resource quotas and circuit breakers.

Overview

Recommended tools

Tags