VYPR
Critical severity9.8NVD Advisory· Published May 13, 2025· Updated Jun 17, 2026

CVE-2025-22462

CVE-2025-22462

Description

An authentication bypass in Ivanti Neurons for ITSM (on-prem only) before 2023.4, 2024.2 and 2024.3 with the May 2025 Security Patch allows a remote unauthenticated attacker to gain administrative access to the system.

Affected products

2
  • Ivanti/Neurons for ITSMllm-fuzzy2 versions
    <2023.4, 2024.2, 2024.3 with May 2025 Security Patch+ 1 more
    • (no CPE)range: <2023.4, 2024.2, 2024.3 with May 2025 Security Patch
    • (no CPE)range: 2023.4 w/ May 2025 Security Patch

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.