Arrow left
Looker / Articles
Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457)
7 min read
Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457)
Looker Looker

On Thursday, April 3, 2025, Ivanti disclosed a critical security vulnerability, CVE-2025-22457, impacting Ivanti Connect Secure ("ICS") VPN appliances version 22.7R2.5 and earlier. CVE-2025-22457 is a buffer overflow vulnerability, and successful exploitation would result in remote code execution. Mandiant and Ivanti have identified evidence of active exploitation in the wild against ICS 9.X (end of life) and 22.7R2.5 and earlier versions. Ivanti and Mandiant encourage all customers to upgrade as soon as possible.

More Ways to Read:
🧃 Summarize The key takeaways that can be read in under a minute
Sign up to unlock
Other content from Looker
Explore all
Google Cloud Networking 101: Quick Reference Guide | Google Cloud Blog
Article
Google Cloud Networking 101: Quick Reference Guide | Google Cloud Blog
Google Public Sector: Enhanced CJIS 6.0 Compliance & Expanded AI for Public Safety | Google Cloud Blog
Article
Google Public Sector: Enhanced CJIS 6.0 Compliance & Expanded AI for Public Safety | Google Cloud Blog
What's new with Google Data Cloud | Google Cloud Blog
Article
What's new with Google Data Cloud | Google Cloud Blog
Simplifying platform engineering at John Lewis - part two | Google Cloud Blog
Article
Simplifying platform engineering at John Lewis - part two | Google Cloud Blog
Featured by Map & Fire
10 Point Checklist to Clearly Communicate Your Positioning
Featured
Article
10 Point Checklist to Clearly Communicate Your Positioning
Map & Fire Claimed Map & Fire