Ref# ADV2025_45 | Date: Feb 14th 2025

---

Ivanti has published a security advisory to address vulnerabilities affecting the following products on February 11, 2025. It is recommended that you take the necessary precautions to ensure your products are always protected.

• Ivanti Connect Secure (ICS) – version 22.7R2.5 and prior
• Ivanti CSA – version 5.0.4 and prior
• Ivanti Policy Secure (IPS) – version 22.7R1.2 and prior
• Ivanti Secure Access Client (ISAC) – version 22.7R4 and prior

For more information on these updates, you can follow these URLs: 

1. https://forums.ivanti.com/s/article/February-Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-and-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs?language=en_US&_gl=1*19mding*_gcl_au*MjA5NzM0MjEzMy4xNzM5Mjg3OTMz  
2. https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Cloud-Services-Application-CSA-CVE-2024-47908-CVE-2024-11771?language=en_US

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: Ivanti Security Advisory

References

• Ivanti Forums. (2025, February 11). Retrieved from Ivanti. https://forums.ivanti.com/s/searchallcontent?language=en_US#t=All&sort=date%20descending&f:@sfkbknowledgearticletypec=[Security%20Advisory]
• Ivanti security advisory. (2025, February 11). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/ivanti-security-advisory-av25-074