CVE-2025-0282 PoC — Ivanti多款产品安全漏洞

Source

https://github.com/chiefchainer/CVE-2025-0282

Associated Vulnerability

Title:Ivanti多款产品安全漏洞 (CVE-2025-0282)
Description:A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution.

Description

Exploit for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways

Readme

# PoC for CVE-2025-0282 
**Remote Unauthenticated Stack Buffer Overflow in Ivanti Products**

## Overview
This proof-of-concept demonstrates exploitation of CVE-2025-0282, a critical vulnerability affecting:
- Ivanti Connect Secure
- Ivanti Policy Secure 
- Ivanti Neurons for ZTA gateways

Based on [watchTowr's research](https://labs.watchtowr.com/exploitation-walkthrough-and-techniques-ivanti-connect-secure-rce-cve-2025-0282), this PoC uses a ROP chain targeting **Ivanti Connect Secure 22.7r2.4** specifically. Other versions require custom ROP chain development.

The payload creates a new privileged admin account with:
- Username: `admin`
- Password: `password`
- Root-level privileges (UID 0)

## Prerequisites
- Python 3.x
- Required packages: `requests`, `pyopenssl`
- Vulnerable Ivanti system (version 22.7r2.4)

## Usage
1. Run the exploit:
```bash
python3 CVE-2025-0282.py -t <TARGET_IP> -p 443

File Snapshot


 [4.0K]  /data/pocs/aae1be17bcfbb2e2e4280647146c45c96f73eea0
├── [5.8K]  CVE-2025-0282.py
└── [ 910]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-0282 PoC — Ivanti多款产品 安全漏洞