CVE-2025-0293 – Ivanti Connect Secure CLRF Injection Vulnerability

CVE ID : CVE-2025-0293

Published : July 8, 2025, 4:15 p.m. | 1 hour, 3 minutes ago

Description : CLRF injection in Ivanti Connect Secure before version 22.7R2.8 and Ivanti Policy Secure before version 22.7R1.5 allows a remote authenticated attacker with admin rights to write to a protected configuration file on disk.

Severity: 6.6 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…