Ivanti released security updates to address vulnerabilities (CVE-2025-0282, CVE-2025-0283) in Ivanti Connect Secure, Policy Secure, and ZTA Gateways. A cyber threat actor could exploit CVE-2025-0282 to take control of an affected system.
CERT Bulgaria urges organizations to hunt for any malicious activity, report any positive findings to CISA, and review the following for more information: