{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T01:20:32.744","vulnerabilities":[{"cve":{"id":"CVE-2025-55144","sourceIdentifier":"3c1d8aa1-5a33-4ea4-8992-aadd6440af75","published":"2025-09-09T16:15:34.540","lastModified":"2025-09-24T19:57:29.287","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 (Fix deployed on 02-Aug-2025) allows a remote authenticated attacker with read-only admin privileges to configure restricted settings."}],"metrics":{"cvssMetricV31":[{"source":"3c1d8aa1-5a33-4ea4-8992-aadd6440af75","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":2.5}]},"weaknesses":[{"source":"3c1d8aa1-5a33-4ea4-8992-aadd6440af75","type":"Secondary","description":[{"lang":"en","value":"CWE-862"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:*:*:*:*:*:*:*:*","versionEndExcluding":"22.7","matchCriteriaId":"201EB882-0B2A-47DB-B517-1E72A0542B27"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:-:*:*:*:*:*:*","matchCriteriaId":"F788F6D9-5368-4B8E-BFA0-E8FB3CDADB01"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r1:*:*:*:*:*:*","matchCriteriaId":"2927A40D-E8A3-4DB6-9C93-04A6C6035C3D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r1.1:*:*:*:*:*:*","matchCriteriaId":"1399BBB4-E62B-4FF6-B9E3-6AAC68D4D583"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r1.2:*:*:*:*:*:*","matchCriteriaId":"1EAD1423-4477-4C35-BF93-697A2C0697C6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r1.3:*:*:*:*:*:*","matchCriteriaId":"858353BC-12CB-4014-BFCA-DA7B1B3DD4B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r1.4:*:*:*:*:*:*","matchCriteriaId":"865F72BF-57B2-4B0C-BACE-3500E0AE6751"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r1.5:*:*:*:*:*:*","matchCriteriaId":"39E11407-E0C0-454F-B731-7DA4CBC696EB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r2:*:*:*:*:*:*","matchCriteriaId":"247E71F8-A03B-4097-B7BF-09F8BF3ED4D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r2.1:*:*:*:*:*:*","matchCriteriaId":"E0059C69-4A18-4153-9D9A-5C1B03AD1453"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r2.2:*:*:*:*:*:*","matchCriteriaId":"FC523C88-115E-4CD9-A8CB-AE6E6610F7D4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r2.3:*:*:*:*:*:*","matchCriteriaId":"3447428E-DBCD-4553-B51D-AC08ECAFD881"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r2.4:*:*:*:*:*:*","matchCriteriaId":"A08BAF98-7F05-4596-8BFC-91F1A79D3BD1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r2.5:*:*:*:*:*:*","matchCriteriaId":"40717D97-A062-49C4-B105-C22AAC3A206A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r2.6:*:*:*:*:*:*","matchCriteriaId":"C3019D80-C578-437E-A304-F49F1AEC24F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r2.7:*:*:*:*:*:*","matchCriteriaId":"A2EFC001-63D4-4FD0-8E14-C5A1C9E3BF9C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:connect_secure:22.7:r2.8:*:*:*:*:*:*","matchCriteriaId":"5100B9BD-3C11-4C22-9A5E-2FBFD06701EA"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:policy_secure:*:*:*:*:*:*:*:*","versionEndExcluding":"22.7","matchCriteriaId":"FAD0FC91-CA1E-4DC3-A37E-1BF98906D07C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:policy_secure:22.7:-:*:*:*:*:*:*","matchCriteriaId":"1F22B988-2585-4853-9838-AB3746C8B888"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:policy_secure:22.7:r1:*:*:*:*:*:*","matchCriteriaId":"FD9BE8C2-43EB-4870-A4B7-267CB17A19F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:policy_secure:22.7:r1.1:*:*:*:*:*:*","matchCriteriaId":"C8915BB2-C1C0-4189-A847-DDB2EF161D62"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:policy_secure:22.7:r1.2:*:*:*:*:*:*","matchCriteriaId":"8D24A8DB-D697-4C60-935D-B08EE36861CB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:policy_secure:22.7:r1.3:*:*:*:*:*:*","matchCriteriaId":"4C12D325-77E1-4873-8A77-D76F4A73BCF8"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:policy_secure:22.7:r1.4:*:*:*:*:*:*","matchCriteriaId":"95E4AE0D-614C-4300-9ADB-8442EF9A84C5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:policy_secure:22.7:r1.5:*:*:*:*:*:*","matchCriteriaId":"7E6DEE21-6940-47B5-8733-B0C5BC045858"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:zero_trust_access_gateway:22.8:r2.2:*:*:*:*:*:*","matchCriteriaId":"E7C3FC1D-94CA-4594-ABF3-59829E43A692"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:neurons_for_secure_access:*:*:*:*:*:*:*:*","versionEndExcluding":"22.8","matchCriteriaId":"7705B778-27AA-45D2-966E-2E5BE7CDC022"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:neurons_for_secure_access:22.8:r1:*:*:*:*:*:*","matchCriteriaId":"A32A3778-B33F-4249-A248-745876B4CE48"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:neurons_for_secure_access:22.8:r1.1:*:*:*:*:*:*","matchCriteriaId":"B415A830-5771-462F-8E55-790FFF7D5277"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:neurons_for_secure_access:22.8:r1.2:*:*:*:*:*:*","matchCriteriaId":"E79007DD-C9A9-4DE8-AD06-FB5F9BAC4EBB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ivanti:neurons_for_secure_access:22.8:r1.3:*:*:*:*:*:*","matchCriteriaId":"003B96FC-A3C7-4488-B0D0-7F7EFD9C762F"}]}]}],"references":[{"url":"https://forums.ivanti.com/s/article/September-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-and-Neurons-for-Secure-Access-Multiple-CVEs?language=en_US","source":"3c1d8aa1-5a33-4ea4-8992-aadd6440af75","tags":["Vendor Advisory"]}]}}]}