Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN AppliancesĀ - SecurityWeek
Ivanti recently discovered a critical vulnerability in its Connect Secure VPN appliances, CVE-2025-22457, which was originally patched in February but misdiagnosed as a denial-of-service issue. Chinese hackers, tracked as UNC5221, are actively exploiting this vulnerability to deploy backdoors. Ivanti urges customers to update to the latest version and migrate away from unsupported appliances.