Ivanti Product Security Update Advisory

Jun 12 2025

Overview

We have released a security update to fix vulnerabilities in Ivanti products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-5353, CVE-2025-22463, CVE-2025-22455

Ivanti Workspace Control Versions: 10.19.0.0 and earlier

Resolved Vulnerabilities

Hardcoded encryption key usage vulnerability that could allow SQL credentials to be decrypted (CVE-2025-5353)
Vulnerability in the use of hardcoded encryption keys that could allow decryption of stored environment passwords (CVE-2025-22463)
Hardcoded encryption key usage vulnerability that could allow SQL credentials to be decrypted (CVE-2025-22455)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-5353, CVE-2025-22463, CVE-2025-22455

Ivanti Workspace Control version: 10.19.10.0

References

[1] Security Advisory Ivanti Workspace Control (CVE-2025-5353, CVE- CVE-2025-22463, CVE-2025-22455)
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Workspace-Control-CVE-2025-5353-CVE-CVE-2025-22463-CVE-2025-22455?language=en_US

Ivanti Product Security Update Advisory

MS Family June 2025 Routine Security Update Advisory

Wazuh Product Security Update Advisory (CVE-2025-24016)

Tags:

MS Family June 2025 Routine Security Update Advisory

Wazuh Product Security Update Advisory (CVE-2025-24016)