{"id":2720,"date":"2025-05-03T03:34:01","date_gmt":"2025-05-03T03:34:01","guid":{"rendered":"http:\/\/localhost\/?p=2720"},"modified":"2025-05-03T03:34:01","modified_gmt":"2025-05-03T03:34:01","slug":"march-security-advisory-ivanti-secure-access-client-isac-cve-2025-22454","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=2720","title":{"rendered":"March Security Advisory Ivanti Secure Access Client (ISAC) (CVE-2025-22454)"},"content":{"rendered":"
\n

Vulnerability Details<\/h2>\n
\n

Basic Information<\/h3>\n\n\n\n\n\n\n
Title<\/th>\nMarch Security Advisory Ivanti Secure Access Client (ISAC) (CVE-2025-22454)<\/td>\n<\/tr>\n
Type<\/th>\nivanti<\/td>\n<\/tr>\n
Published<\/th>\n2025-11-03T13:52:58<\/td>\n<\/tr>\n
Last Seen<\/th>\n2025-05-03T07:45:45<\/td>\n<\/tr>\n
CVSS Score<\/th>\n7.8 (HIGH)<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

CVSS v3 Details<\/h3>\n\n\n\n\n\n\n\n\n\n
Attack Vector<\/th>\nLOCAL<\/td>\n<\/tr>\n
Attack Complexity<\/th>\nLOW<\/td>\n<\/tr>\n
Privileges Required<\/th>\nLOW<\/td>\n<\/tr>\n
User Interaction<\/th>\nNONE<\/td>\n<\/tr>\n
Scope<\/th>\nUNCHANGED<\/td>\n<\/tr>\n
Confidentiality Impact<\/th>\nHIGH<\/td>\n<\/tr>\n
Integrity Impact<\/th>\nHIGH<\/td>\n<\/tr>\n
Availability Impact<\/th>\nHIGH<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

CVE Information<\/h3>\n\n\n\n\n
CVE IDs<\/th>\nCVE-2025-22454<\/td>\n<\/tr>\n
CWE<\/th>\n<\/td>\n<\/tr>\n
Bulletin Family<\/th>\nsoftware<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

Description<\/h3>\n
\n Summary Ivanti has released updates for Ivanti Secure Access Client (ISAC) which addresses one high severity vulnerability. Successful exploitation could lead to privilege escalation. We are not aware of any customers being exploited by…\n <\/div>\n<\/p><\/div>\n
\n

Impact Assessment<\/h3>\n\n\n\n
Base Score<\/th>\n7.8<\/td>\n<\/tr>\n
Severity<\/th>\nHIGH<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

View full CVE details<\/a><\/p>\n<\/p><\/div>\n<\/div>\n