Skip to main content

CVE-2025-5463: CWE-532 Insertion of Sensitive Information into Log File in Ivanti Connect Secure

Medium
VulnerabilityCVE-2025-5463cvecve-2025-5463cwe-532
Published: Tue Jul 08 2025 (07/08/2025, 15:02:38 UTC)
Source: CVE Database V5
Vendor/Project: Ivanti
Product: Connect Secure

Description

Insertion of sensitive information into a log file in Ivanti Connect Secure before version 22.7R2.8 and Ivanti Policy Secure before version 22.7R1.5 allows a local authenticated attacker to obtain that information.

Technical Details

Data Version
5.1
Assigner Short Name
ivanti
Date Reserved
2025-06-02T10:54:07.286Z
Cvss Version
3.1
State
PUBLISHED

Threat ID: 686d34a96f40f0eb72f7c5a8

Added to database: 7/8/2025, 3:09:29 PM

Last updated: 7/8/2025, 3:09:29 PM

Views: 1

Actions

Please log in to the Console to use AI analysis features.

Need enhanced features?

Contact root@offseq.com for Pro access with improved analysis and higher rate limits.

Latest Threats