Security Advisory and Patch Update
Ivanti has released security advisories and mitigations for critical vulnerabilities in the Ivanti Connect Secure gateways. These vulnerabilities impacts all supported versions of ICS (22.x).
The following CVE's have been fixed:
22.7R2.6
This release includes important security fixes as part of our ongoing commitment to secure-by-design. There has been no evidence of exploitation in the wild of anything fixed in the release and full details of these security fixes will be available in our next security advisory, scheduled for release on February 11, 2025.
22.7R2.5
This release includes important security fixes as part of our ongoing commitment to security. The details of these security fixes can be found in security advisory blog, dated January 8th, 2025.
|
CVE's |
Security Advisory Blog |
|---|---|
| CVE-2025-0282 | For more details, see security advisory blog. |
| CVE-2025-0283 | For more details, see security advisory blog. |
22.7R2.4
This release includes important security fixes as part of our ongoing commitment to secure-by-design. There has been no evidence of exploitation in the wild of anything fixed in the release and full details of these security fixes will be available in our next security advisory, scheduled for release on December 11, 2024.
22.7R2.3
This release includes important security fixes as part of our ongoing commitment to secure-by-design. There has been no evidence of exploitation in the wild of anything fixed in the release and full details of these security fixes will be available in our next security advisory, scheduled for release on November 12, 2024.
22.7R2
|
CVE's |
Ivanti Forum links |
|---|---|
| CVE-2023-38551 | For more details, see Ivanti forum. |
| CVE-2024-6387 | For more details, see Ivanti forum. |