Researchers at Rapid7 published technical details and proof-of-concept exploit code for a critical zero-day vulnerability in Ivanti Connect Secure, tracked as CVE-2025-22457. This flaw, rooted in a stack-based buffer overflow, is now confirmed to be actively exploited in the wild by a China-linked cyber-espionage group known as UNC5221. The vulnerability resides in the HTTP(S) web […]
The post Ivanti Zero-Day CVE-2025-22457 Exploit Details Released appeared first on Daily CyberSecurity.