Ivanti Neurons For Zero Trust Access
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Ivanti Neurons For Zero Trust Access.
By the Year
In 2026 there have been 0 vulnerabilities in Ivanti Neurons For Zero Trust Access. Last year, in 2025 Neurons For Zero Trust Access had 3 security vulnerabilities published. Right now, Neurons For Zero Trust Access is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 3 | 8.33 |
| 2024 | 1 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 2 | 7.50 |
It may take a day or so for new Neurons For Zero Trust Access vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Ivanti Neurons For Zero Trust Access Security Vulnerabilities
Buf overflow Ivanti Connect Secure <22.7, Policy Secure <22.7 ZTA Gateways <22.8
CVE-2025-22457
9 - Critical
- April 03, 2025
A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution.
Stack Overflow
Local Auth Priv Esc via Stack Overflow in Ivanti Connect Secure <22.7R2.5
CVE-2025-0283
7 - High
- January 08, 2025
A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a local authenticated attacker to escalate their privileges.
Memory Corruption
Ivanti Connect Secure <=22.7R2.5 Buffer Overflow RCE
CVE-2025-0282
9 - Critical
- January 08, 2025
A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution.
Stack Overflow
SSRF in Ivanti Connect Secure SAML Enables Unauthorized Resource Access
CVE-2024-21893
- January 31, 2024
A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and Ivanti Neurons for ZTA allows an attacker to access certain restricted resources without authentication.
SSRF
Ivanti Secure DoS (ICS pre-9.1R14.3, IPS pre-9.1R17, Neurons pre-22.3)
CVE-2022-35254
7.5 - High
- December 05, 2022
An unauthenticated attacker can cause a denial-of-service to the following products: Ivanti Connect Secure (ICS) in versions prior to 9.1R14.3, 9.1R15.2, 9.1R16.2, and 22.2R4, Ivanti Policy Secure (IPS) in versions prior to 9.1R17 and 22.3R1, and Ivanti Neurons for Zero-Trust Access in versions prior to 22.3R1.
Resource Exhaustion
IVANTI CONNECT SECURE (ICS) DOS Vulnerability (pre-9.1R14.3/15.2/16.2/22.2)
CVE-2022-35258
7.5 - High
- December 05, 2022
An unauthenticated attacker can cause a denial-of-service to the following products: Ivanti Connect Secure (ICS) in versions prior to 9.1R14.3, 9.1R15.2, 9.1R16.2, and 22.2R4, Ivanti Policy Secure (IPS) in versions prior to 9.1R17 and 22.3R1, and Ivanti Neurons for Zero-Trust Access in versions prior to 22.3R1.
Incorrect Calculation
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Ivanti Neurons For Zero Trust Access or by Ivanti? Click the Watch button to subscribe.
