Ivanti neurons for ITSM can be targeted by authentication -bypass -error, so watch out
- Advertisement -
- Advertisement -
- Ivanti released a patch for a critical severity error in neurons for his
- The error can be misused to obtain administrator rights on target systems
- There is no proof of abuse in the wild
Ivanti has a vulnerability for criticism of Zwik in its neurons for ITSM IT Service Management solution and urges users to apply the solution and limit the risk as quickly as possible.
Neurons for ITSM is an AI-driven IT Service Management Platform used by IT departments in Midden to Large Enterprises to automate, streamline and manage IT support services, incidents and assets in their organizations.
An exact number of users is unknown, but Ivanti claims to maintain tens of thousands of organizations with its portfolio, so it is safe to assume that the attack surface is relatively large.
Low complexity attacks
The vulnerability in question is followed as CVE-2025-22462. NVD describes it as an authentication-BYPASS in Neurons for ITSM in versions before 2023.4, 2024.2 and 2024.3 with the Security Patch of May 2025. It only influences On-Prem authorities and enables an external unauthorized threat system to be admin-law.
The company says that, depending on the system configuration, the vulnerability can be used for attacks with low complexity. However, that does not seem to have happened yet, because Ivanti claims that there is no evidence of abuse in the wild so far.
Ivanti also suggested that organizations should follow its guidance because they will be exposed less to possible attacks.
“Customers who have followed Ivanti’s guidelines on securing the IIS website and limited access to a limited number of IP addresses and domain names have a reduced risk for their environment,” the company said in an advice. “Customers who have users log in to solution from outside their company network also have a reduced risk to their environment if they ensure that the solution is configured with a DMZ.”
This is the second major vulnerability that Ivanti has patched this week, after tackling a bug of criticism seriously in his Endpoint Manager Mobile (EPMM) software.
Maybe you like it too
- Advertisement -