January 10 Advisory: Actively Exploited Unauthenticated RCE in Ivanti Connect Secure [CVE-2025-0282]
Common Information
Type Value
UUID 88ab261b-9dd1-48e7-bd23-4c3c78e103a3
Fingerprint be7c057080f19a0d
Analysis status DONE
Considered CTI value 2
Text language
Published Jan. 10, 2025, 7:38 p.m.
Added to db Jan. 10, 2025, 8:45 p.m.
Last updated Jan. 18, 2025, 5:36 p.m.
Headline January 10 Advisory: Actively Exploited Unauthenticated RCE in Ivanti Connect Secure [CVE-2025-0282]
Title January 10 Advisory: Actively Exploited Unauthenticated RCE in Ivanti Connect Secure [CVE-2025-0282]
Detected Hints/Tags/Attributes 21/2/17
Source URLs
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 77 Censys https://censys.io/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 66
cve-2025-0282
Details CVE 62
cve-2023-46805
Details CVE 80
cve-2024-21887
Details CVE 49
cve-2025-0283
Details Domain 34
services.software
Details Domain 26
host.services.software
Details Domain 7
risks.name
Details Domain 705
nvd.nist.gov
Details Domain 357
thehackernews.com
Details Domain 79
cloud.google.com
Details Domain 590
www.cisa.gov
Details File 1
ivanti-flaw-cve-2025-0282-actively.html
Details Url 3
https://forums.ivanti.com/s/article/security-advisory-ivanti-connect-secure-policy-secure-zta-gateways-cve-2025-0282-cve-2025-0283?language=en_us
Details Url 1
https://nvd.nist.gov/vuln/detail/cve-2025-0282
Details Url 1
https://thehackernews.com/2025/01/ivanti-flaw-cve-2025-0282-actively.html
Details Url 5
https://cloud.google.com/blog/topics/threat-intelligence/ivanti-connect-secure-vpn-zero-day
Details Url 1
https://www.cisa.gov/cisa-mitigation-instructions-cve-2025-0282