This page was not yet optimized for use on mobile
devices.
Ivanti Connect Secure 22.7R2
Known vulnerabilities detected
Our automated heuristics have identified vulnerabilities that may be associated with this certificate. See the CVEs section for details.CSV information
| Status | active |
|---|---|
| Valid from | 27.06.2025 |
| Valid until | 27.06.2027 |
| Scheme | 🇺🇸 US |
| Manufacturer | Ivanti, Inc. |
| Category | Network and Network-Related Devices and Systems |
| Security level | |
| Protection profiles |
Heuristics summary
Certificate ID: CCEVS-VR-11564-2025
Certificate
Extracted keywords
Certificates
CCEVS-VR-VID11564-2025Evaluation facilities
Acumen SecurityFile metadata
| Title | VID11564-FINAL CERT |
|---|---|
| Pages | 1 |
| Producer | WeasyPrint 62.3 |
Certification report
Extracted keywords
Symmetric Algorithms
AES, HMACAsymmetric Algorithms
ECDSAProtocols
SSL, TLS, TLSv1.3, TLSv1.2, VPNRandomness
DRBGVendor
MicrosoftSecurity level
EAL 1Claims
T.UNAUTHORIZED_ADMINISTRATOR_ACCESS, T.WEAK_CRYPTOGRAPHY, T.UNTRUSTED_COMMUNICATION_CHANNELS, T.WEAK_AUTHENTICATION_ENDPOINTS, T.UPDATE_COMPROMISE, T.UNDETECTED_ACTIVITY, T.SECURITY_FUNCTIONALITY_COMPROMISE, T.SECURITY_FUNCTIONALITY_FAILURE, A.PHYSICAL_PROTECTION, A.LIMITED_FUNCTIONALITY, A.NO_THRU_TRAFFIC_PROTECTION, A.TRUSTED_ADMINISTRATOR, A.REGULAR_UPDATES, A.ADMIN_CREDENTIALS_SECURE, A.RESIDUAL_INFORMATION, A.VS_TRUSTED_ADMINISTRATOR, A.VS_REGULAR_UPDATES, A.VS_ISOLATION, A.VS_CORRECT_CONFIGURATIONSecurity Functional Requirements (SFR)
FCS_TLSC_EXT.1, FCS_TLSC_EXT.2, FCS_TLSS_EXT.1, FCS_RBG_EXT.1, FCS_COP, FCS_CKM.1, FCS_CKM.2, FPT_APW_EXT.1Certificates
CCEVS-VR-11564-2025Evaluation facilities
Acumen Security, IntertekStandards
RFC 5424, RFC 5425, RFC 5280, RFC 1035, X.509File metadata
| Author | ppatin |
|---|---|
| Creation date | D:20250630165811-04'00' |
| Modification date | D:20250630165811-04'00' |
| Pages | 29 |
| Creator | Microsoft® Word 2019 |
| Producer | Microsoft® Word 2019 |
Frontpage
| Certificate ID | CCEVS-VR-11564-2025 |
|---|---|
| Certified item | for the Ivanti Connect Secure 22.7R2 |
| Certification lab | US NIAP |
Security target
Extracted keywords
Symmetric Algorithms
AES, AES-256, HMAC, HMAC-SHA-256, HMAC-SHA-384Asymmetric Algorithms
RSA 2048, ECDHE, ECDH, ECDSA, ECC, Diffie-HellmanHash functions
SHA-1, SHA-256, SHA-384, SHA-512Schemes
MACProtocols
SSL, TLS, TLSv1.3, TLSv1.2, TLS 1.2, TLS 1.3, TLS v1.2, TLS v1.3, TLSv1.1, VPNRandomness
DRBG, RBGElliptic Curves
P-256, P-384, P-521, P-224, secp256r1, secp384r1, secp521r1Block cipher modes
ECB, CBC, CTR, GCMTLS cipher suites
TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384Trusted Execution Environments
SSCVendor
MicrosoftClaims
T.UNAUTHORIZED_ADMINISTRATOR_ACCESS, T.WEAK_CRYPTOGRAPHY, T.UNTRUSTED_COMMUNICATION_CHANNELS, T.WEAK_AUTHENTICATION_ENDPOINTS, T.UPDATE_COMPROMISE, T.UNDETECTED_ACTIVITY, T.SECURITY_FUNCTIONALITY_COMPROMISE, T.SECURITY_FUNCTIONALITY_FAILURE, A.PHYSICAL_PROTECTION, A.LIMITED_FUNCTIONALITY, A.NO_THRU_TRAFFIC_PROTECTION, A.TRUSTED_ADMINISTRATOR, A.REGULAR_UPDATES, A.ADMIN_CREDENTIALS_SECURE, A.RESIDUAL_INFORMATION, A.VS_TRUSTED_ADMINISTRATOR, A.VS_REGULAR_UPDATES, A.VS_ISOLATION, A.VS_CORRECT_CONFIGURATION, OE.PHYSICAL, OE.NO_GENERAL_PURPOSE, OE.NO_THRU_TRAFFIC_PROTECTION, OE.TRUSTED_ADMIN, OE.UPDATES, OE.ADMIN_CREDENTIALS_SECURE, OE.RESIDUAL_INFORMATION, OE.VM_CONFIGURATIONSecurity Assurance Requirements (SAR)
ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_SPD.1, ASE_TSS.1Security Functional Requirements (SFR)
FAU_STG_EXT.1, FAU_GEN.1, FAU_GEN.2, FAU_STG.1, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2.1, FAU_STG.1.1, FAU_STG.1.2, FAU_STG_EXT.1.1, FAU_STG_EXT.1.2, FAU_STG_EXT.1.3, FAU_STG_EXT.1.4, FAU_STG_EXT.1.5, FAU_STG_EXT.1.6, FCS_TLSC_EXT.1, FCS_TLSC_EXT.2, FCS_TLSS_EXT.1, FCS_RBG_EXT.1, FCS_COP, FCS_CKM.1, FCS_CKM.2, FCS_CKM.4, FCS_CKM.1.1, FCS_CKM.2.1, FCS_CKM.4.1, FCS_COP.1, FCS_RBG_EXT.1.1, FCS_RBG_EXT.1.2, FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.1.2, FCS_TLSC_EXT.1.3, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.1.5, FCS_TLSC_EXT.1.6, FCS_TLSC_EXT.1.7, FCS_TLSC_EXT.1.8, FCS_TLSC_EXT.1.9, FCS_TLSC_EXT.2.1, FCS_TLSS_EXT.1.1, FCS_TLSS_EXT.1.2, FCS_TLSS_EXT.1.3, FCS_TLSS_EXT.1.4, FCS_TLSS_EXT.1.5, FCS_TLSS_EXT.1.6, FCS_TLSS_EXT.1.7, FCS_TLSS_EXT.1.8, FIA_UIA_EXT.1.3, FIA_AFL.1, FIA_PMG_EXT.1, FIA_UIA_EXT.1, FIA_UAU.7, FIA_AFL.1.1, FIA_AFL.1.2, FIA_PMG_EXT.1.1, FIA_UIA_EXT.1.1, FIA_UIA_EXT.1.2, FIA_UIA_EXT.1.4, FIA_UAU_EXT.2, FMT_SMF.1.1, FMT_MOF, FMT_MTD, FMT_SMF.1, FMT_SMR.2, FMT_MOF.1, FMT_MTD.1, FMT_SMR.2.1, FMT_SMR.2.2, FMT_SMR.2.3, FMT_SMR, FPT_APW_EXT.1, FPT_TST_EXT.1, FPT_SKP_EXT.1, FPT_STM_EXT.1, FPT_TUD_EXT.1, FPT_APW_EXT.1.1, FPT_APW_EXT.1.2, FPT_SKP_EXT.1.1, FPT_STM_EXT.1.1, FPT_STM_EXT.1.2, FPT_TST_EXT.1.1, FPT_TST_EXT.1.2, FPT_TUD_EXT.1.1, FPT_TUD_EXT.1.2, FPT_TUD_EXT.1.3, FTA_SSL.3, FTA_SSL.4, FTA_SSL_EXT.1, FTA_TAB.1, FTA_SSL_EXT.1.1, FTA_SSL.3.1, FTA_SSL.4.1, FTA_TAB.1.1, FTP_ITC.1, FTP_TRP, FTP_ITC.1.1, FTP_ITC.1.2, FTP_ITC.1.3, FTP_TRP.1Evaluation facilities
Acumen Security, IntertekStandards
FIPS PUB 186-5, FIPS PUB 186-4, FIPS186-4, FIPS186-5, NIST SP 800-186, NIST SP 800-56A, NIST SP 800-90, PKCS #1, RFC 5424, RFC 5425, RFC 5280, RFC 1035, RFC 3447, RFC 2818, RFC 8446, RFC 5246, RFC 3268, RFC 8422, RFC 5289, RFC 6125, RFC 2986, RFC 3986, RFC 8017, ISO/IEC 14888-3, ISO/IEC 9796-2, ISO/IEC 10118-, ISO/IEC 9797-, ISO/IEC 18031:2011, X.509File metadata
| Author | Jenn Lobb |
|---|---|
| Creation date | D:20250626063319+00'00' |
| Modification date | D:20250626063320Z |
| Pages | 61 |
| Creator | Microsoft® Word 2016 |
| Producer | www.ilovepdf.com |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.Certificate ID
CCEVS-VR-11564-2025Extracted SARs
ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_SPD.1, ASE_TSS.1, ATE_IND.1, AVA_VAN.1CPE matches
- cpe:2.3:a:ivanti:connect_secure:22.7:r2.1:*:*:*:*:*:*
- cpe:2.3:a:ivanti:connect_secure:22.7:r2.2:*:*:*:*:*:*
- cpe:2.3:a:ivanti:connect_secure:22.7:r2.3:*:*:*:*:*:*
- cpe:2.3:a:ivanti:connect_secure:22.7:r2.4:*:*:*:*:*:*
- cpe:2.3:a:ivanti:connect_secure:22.7:r2.5:*:*:*:*:*:*
- cpe:2.3:a:ivanti:connect_secure:22.7:r2.6:*:*:*:*:*:*
- cpe:2.3:a:ivanti:connect_secure:22.7:r2.7:*:*:*:*:*:*
- cpe:2.3:a:ivanti:connect_secure:22.7:r2.8:*:*:*:*:*:*
- cpe:2.3:a:ivanti:connect_secure:22.7:r2.9:*:*:*:*:*:*
- cpe:2.3:a:ivanti:connect_secure:22.7:r2:*:*:*:*:*:*
Related CVEs
| ID | Links | Severity | CVSS Score | Published on | ||
|---|---|---|---|---|---|---|
| Base | Exploitability | Impact | ||||
| CVE-2024-10644 | HIGH | 7.2 | 5.9 | 11.02.2025 | ||
| CVE-2024-11004 | MEDIUM | 6.1 | 2.7 | 12.11.2024 | ||
| CVE-2024-11005 | HIGH | 7.2 | 5.9 | 12.11.2024 | ||
| CVE-2024-11006 | HIGH | 7.2 | 5.9 | 12.11.2024 | ||
| CVE-2024-11007 | HIGH | 7.2 | 5.9 | 12.11.2024 | ||
| CVE-2024-11633 | HIGH | 7.2 | 5.9 | 10.12.2024 | ||
| CVE-2024-11634 | HIGH | 7.2 | 5.9 | 10.12.2024 | ||
| CVE-2024-13830 | MEDIUM | 6.1 | 2.7 | 11.02.2025 | ||
| CVE-2024-13842 | MEDIUM | 4.4 | 3.6 | 11.02.2025 | ||
| CVE-2024-13843 | MEDIUM | 4.4 | 3.6 | 11.02.2025 | ||
| CVE-2024-37377 | HIGH | 7.5 | 3.6 | 12.12.2024 | ||
| CVE-2024-37400 | HIGH | 7.5 | 3.6 | 13.11.2024 | ||
| CVE-2024-37401 | HIGH | 7.5 | 3.6 | 12.12.2024 | ||
| CVE-2024-38655 | HIGH | 7.2 | 5.9 | 13.11.2024 | ||
| CVE-2024-38656 | CRITICAL | 9.1 | 6.0 | 13.11.2024 | ||
| CVE-2024-38657 | MEDIUM | 4.9 | 3.6 | 21.02.2025 | ||
| CVE-2024-39710 | CRITICAL | 9.1 | 6.0 | 13.11.2024 | ||
| CVE-2024-39711 | CRITICAL | 9.1 | 6.0 | 13.11.2024 | ||
| CVE-2024-39712 | CRITICAL | 9.1 | 6.0 | 13.11.2024 | ||
| CVE-2024-47905 | MEDIUM | 4.9 | 3.6 | 12.11.2024 | ||
| CVE-2024-47906 | HIGH | 7.8 | 5.9 | 12.11.2024 | ||
| CVE-2024-47907 | HIGH | 7.5 | 3.6 | 12.11.2024 | ||
| CVE-2024-47909 | MEDIUM | 4.9 | 3.6 | 12.11.2024 | ||
| CVE-2024-8495 | HIGH | 7.5 | 3.6 | 12.11.2024 | ||
| CVE-2024-9420 | HIGH | 8.8 | 5.9 | 12.11.2024 | ||
| CVE-2024-9844 | HIGH | 8.8 | 5.9 | 10.12.2024 | ||
| CVE-2025-0282 | CRITICAL | 9.0 | 6.0 | 08.01.2025 | ||
| CVE-2025-0283 | HIGH | 7.0 | 5.9 | 08.01.2025 | ||
| CVE-2025-0293 | LOW | 2.7 | 1.4 | 08.07.2025 | ||
| CVE-2025-22457 | CRITICAL | 9.8 | 5.9 | 03.04.2025 | ||
| CVE-2025-22467 | HIGH | 8.8 | 5.9 | 11.02.2025 | ||
| CVE-2025-5456 | HIGH | 7.5 | 3.6 | 12.08.2025 | ||
| CVE-2025-5462 | HIGH | 7.5 | 3.6 | 12.08.2025 | ||
| CVE-2025-5466 | MEDIUM | 4.9 | 3.6 | 12.08.2025 | ||
| CVE-2025-5468 | MEDIUM | 5.5 | 3.6 | 12.08.2025 | ||
| CVE-2025-55139 | MEDIUM | 6.8 | 4.0 | 09.09.2025 | ||
| CVE-2025-55141 | HIGH | 8.8 | 5.9 | 09.09.2025 | ||
| CVE-2025-55142 | HIGH | 8.8 | 5.9 | 09.09.2025 | ||
| CVE-2025-55143 | MEDIUM | 6.1 | 2.7 | 09.09.2025 | ||
| CVE-2025-55144 | MEDIUM | 5.4 | 2.5 | 09.09.2025 | ||
| CVE-2025-55145 | HIGH | 8.9 | 6.0 | 09.09.2025 | ||
| CVE-2025-55146 | MEDIUM | 4.9 | 3.6 | 09.09.2025 | ||
| CVE-2025-55147 | HIGH | 8.8 | 5.9 | 09.09.2025 | ||
| CVE-2025-55148 | HIGH | 7.6 | 4.7 | 09.09.2025 | ||
| CVE-2025-8711 | MEDIUM | 5.4 | 2.5 | 09.09.2025 | ||
| CVE-2025-8712 | MEDIUM | 5.4 | 2.5 | 09.09.2025 | ||
Showing 5 out of 46.
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Network and Network-Related Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11564-ci.pdf",
"dgst": "a5b5356db9243c28",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "CCEVS-VR-11564-2025",
"cert_lab": [
"US"
],
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:a:ivanti:connect_secure:22.7:r2.7:*:*:*:*:*:*",
"cpe:2.3:a:ivanti:connect_secure:22.7:r2.8:*:*:*:*:*:*",
"cpe:2.3:a:ivanti:connect_secure:22.7:r2.2:*:*:*:*:*:*",
"cpe:2.3:a:ivanti:connect_secure:22.7:r2:*:*:*:*:*:*",
"cpe:2.3:a:ivanti:connect_secure:22.7:r2.6:*:*:*:*:*:*",
"cpe:2.3:a:ivanti:connect_secure:22.7:r2.9:*:*:*:*:*:*",
"cpe:2.3:a:ivanti:connect_secure:22.7:r2.5:*:*:*:*:*:*",
"cpe:2.3:a:ivanti:connect_secure:22.7:r2.4:*:*:*:*:*:*",
"cpe:2.3:a:ivanti:connect_secure:22.7:r2.3:*:*:*:*:*:*",
"cpe:2.3:a:ivanti:connect_secure:22.7:r2.1:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"eal": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"22.7"
]
},
"indirect_transitive_cves": null,
"next_certificates": null,
"prev_certificates": null,
"protection_profiles": {
"_type": "Set",
"elements": [
"4704bfbdf61ca066"
]
},
"related_cves": {
"_type": "Set",
"elements": [
"CVE-2024-8495",
"CVE-2025-0282",
"CVE-2024-38655",
"CVE-2025-55145",
"CVE-2025-5462",
"CVE-2024-47906",
"CVE-2024-13842",
"CVE-2024-11006",
"CVE-2024-11634",
"CVE-2024-11005",
"CVE-2024-39712",
"CVE-2024-39710",
"CVE-2025-22467",
"CVE-2025-55144",
"CVE-2025-5456",
"CVE-2024-38657",
"CVE-2025-0293",
"CVE-2024-13843",
"CVE-2025-55141",
"CVE-2025-5466",
"CVE-2024-47909",
"CVE-2025-55147",
"CVE-2025-22457",
"CVE-2024-47907",
"CVE-2024-9844",
"CVE-2024-37401",
"CVE-2025-55148",
"CVE-2024-13830",
"CVE-2024-9420",
"CVE-2025-55146",
"CVE-2025-8711",
"CVE-2024-39711",
"CVE-2025-8712",
"CVE-2025-55139",
"CVE-2024-11633",
"CVE-2024-47905",
"CVE-2024-11007",
"CVE-2024-37377",
"CVE-2024-37400",
"CVE-2024-38656",
"CVE-2025-55143",
"CVE-2024-10644",
"CVE-2025-0283",
"CVE-2025-5468",
"CVE-2024-11004",
"CVE-2025-55142"
]
},
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"scheme_data": null,
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "Ivanti, Inc.",
"manufacturer_web": "https://www.ivanti.com",
"name": "Ivanti Connect Secure 22.7R2",
"not_valid_after": "2027-06-27",
"not_valid_before": "2025-06-27",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "st_vid11564-ci.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"US": {
"CCEVS-VR-VID11564-2025": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {},
"cc_security_level": {},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"Acumen": {
"Acumen Security": 1
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/Producer": "WeasyPrint 62.3",
"/Title": "VID11564-FINAL CERT",
"pdf_file_size_bytes": 133977,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "st_vid11564-vr.pdf",
"report_frontpage": {
"US": {
"cert_id": "CCEVS-VR-11564-2025",
"cert_item": "for the Ivanti Connect Secure 22.7R2",
"cert_lab": "US NIAP"
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDSA": {
"ECDSA": 2
}
}
},
"cc_cert_id": {
"US": {
"CCEVS-VR-11564-2025": 1
}
},
"cc_claims": {
"A": {
"A.ADMIN_CREDENTIALS_SECURE": 1,
"A.LIMITED_FUNCTIONALITY": 1,
"A.NO_THRU_TRAFFIC_PROTECTION": 1,
"A.PHYSICAL_PROTECTION": 1,
"A.REGULAR_UPDATES": 1,
"A.RESIDUAL_INFORMATION": 1,
"A.TRUSTED_ADMINISTRATOR": 1,
"A.VS_CORRECT_CONFIGURATION": 1,
"A.VS_ISOLATION": 1,
"A.VS_REGULAR_UPDATES": 1,
"A.VS_TRUSTED_ADMINISTRATOR": 1
},
"T": {
"T.SECURITY_FUNCTIONALITY_COMPROMISE": 1,
"T.SECURITY_FUNCTIONALITY_FAILURE": 1,
"T.UNAUTHORIZED_ADMINISTRATOR_ACCESS": 1,
"T.UNDETECTED_ACTIVITY": 1,
"T.UNTRUSTED_COMMUNICATION_CHANNELS": 1,
"T.UPDATE_COMPROMISE": 1,
"T.WEAK_AUTHENTICATION_ENDPOINTS": 1,
"T.WEAK_CRYPTOGRAPHY": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {},
"cc_security_level": {
"EAL": {
"EAL 1": 5
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM.1": 2,
"FCS_CKM.2": 2,
"FCS_COP": 6,
"FCS_RBG_EXT.1": 1,
"FCS_TLSC_EXT.1": 7,
"FCS_TLSC_EXT.2": 7,
"FCS_TLSS_EXT.1": 8
},
"FPT": {
"FPT_APW_EXT.1": 1
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 2
},
"TLS": {
"TLS": 12,
"TLSv1.2": 2,
"TLSv1.3": 2
}
},
"VPN": {
"VPN": 4
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"Acumen": {
"Acumen Security": 5
},
"Intertek": {
"Intertek": 3
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"RFC": {
"RFC 1035": 1,
"RFC 5280": 1,
"RFC 5424": 1,
"RFC 5425": 1
},
"X509": {
"X.509": 2
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 1
}
},
"constructions": {
"MAC": {
"HMAC": 1
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Microsoft": {
"Microsoft": 1
}
},
"vulnerability": {}
},
"report_metadata": {
"/Author": "ppatin",
"/CreationDate": "D:20250630165811-04\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2019",
"/ModDate": "D:20250630165811-04\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2019",
"pdf_file_size_bytes": 387195,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://forums.ivanti.com/s/contactsupport?language=en_US"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 29
},
"st_filename": "st_vid11564-st.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDH": {
"ECDH": 4,
"ECDHE": 7
},
"ECDSA": {
"ECDSA": 21
}
},
"FF": {
"DH": {
"Diffie-Hellman": 3
}
},
"RSA": {
"RSA 2048": 4
}
},
"cc_cert_id": {},
"cc_claims": {
"A": {
"A.ADMIN_CREDENTIALS_SECURE": 1,
"A.LIMITED_FUNCTIONALITY": 1,
"A.NO_THRU_TRAFFIC_PROTECTION": 1,
"A.PHYSICAL_PROTECTION": 1,
"A.REGULAR_UPDATES": 1,
"A.RESIDUAL_INFORMATION": 1,
"A.TRUSTED_ADMINISTRATOR": 1,
"A.VS_CORRECT_CONFIGURATION": 1,
"A.VS_ISOLATION": 1,
"A.VS_REGULAR_UPDATES": 1,
"A.VS_TRUSTED_ADMINISTRATOR": 1
},
"OE": {
"OE.ADMIN_CREDENTIALS_SECURE": 1,
"OE.NO_GENERAL_PURPOSE": 1,
"OE.NO_THRU_TRAFFIC_PROTECTION": 1,
"OE.PHYSICAL": 1,
"OE.RESIDUAL_INFORMATION": 1,
"OE.TRUSTED_ADMIN": 1,
"OE.UPDATES": 1,
"OE.VM_CONFIGURATION": 1
},
"T": {
"T.SECURITY_FUNCTIONALITY_COMPROMISE": 1,
"T.SECURITY_FUNCTIONALITY_FAILURE": 1,
"T.UNAUTHORIZED_ADMINISTRATOR_ACCESS": 1,
"T.UNDETECTED_ACTIVITY": 1,
"T.UNTRUSTED_COMMUNICATION_CHANNELS": 1,
"T.UPDATE_COMPROMISE": 1,
"T.WEAK_AUTHENTICATION_ENDPOINTS": 1,
"T.WEAK_CRYPTOGRAPHY": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_FSP.1": 2
},
"AGD": {
"AGD_OPE.1": 2,
"AGD_PRE.1": 2
},
"ALC": {
"ALC_CMC.1": 2,
"ALC_CMS.1": 2
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.1": 1,
"ASE_REQ.1": 1,
"ASE_SPD.1": 1,
"ASE_TSS.1": 1
},
"ATE": {
"ATE_IND.1": 2
},
"AVA": {
"AVA_VAN.1": 2
}
},
"cc_security_level": {},
"cc_sfr": {
"FAU": {
"FAU_GEN.1": 4,
"FAU_GEN.1.1": 2,
"FAU_GEN.1.2": 1,
"FAU_GEN.2": 4,
"FAU_GEN.2.1": 1,
"FAU_STG.1": 4,
"FAU_STG.1.1": 1,
"FAU_STG.1.2": 1,
"FAU_STG_EXT.1": 5,
"FAU_STG_EXT.1.1": 1,
"FAU_STG_EXT.1.2": 1,
"FAU_STG_EXT.1.3": 1,
"FAU_STG_EXT.1.4": 1,
"FAU_STG_EXT.1.5": 1,
"FAU_STG_EXT.1.6": 1
},
"FCS": {
"FCS_CKM.1": 11,
"FCS_CKM.1.1": 1,
"FCS_CKM.2": 9,
"FCS_CKM.2.1": 1,
"FCS_CKM.4": 5,
"FCS_CKM.4.1": 1,
"FCS_COP": 22,
"FCS_COP.1": 9,
"FCS_RBG_EXT.1": 5,
"FCS_RBG_EXT.1.1": 1,
"FCS_RBG_EXT.1.2": 1,
"FCS_TLSC_EXT.1": 12,
"FCS_TLSC_EXT.1.1": 2,
"FCS_TLSC_EXT.1.2": 1,
"FCS_TLSC_EXT.1.3": 1,
"FCS_TLSC_EXT.1.4": 1,
"FCS_TLSC_EXT.1.5": 1,
"FCS_TLSC_EXT.1.6": 1,
"FCS_TLSC_EXT.1.7": 1,
"FCS_TLSC_EXT.1.8": 1,
"FCS_TLSC_EXT.1.9": 1,
"FCS_TLSC_EXT.2": 13,
"FCS_TLSC_EXT.2.1": 1,
"FCS_TLSS_EXT.1": 13,
"FCS_TLSS_EXT.1.1": 2,
"FCS_TLSS_EXT.1.2": 1,
"FCS_TLSS_EXT.1.3": 1,
"FCS_TLSS_EXT.1.4": 1,
"FCS_TLSS_EXT.1.5": 1,
"FCS_TLSS_EXT.1.6": 1,
"FCS_TLSS_EXT.1.7": 1,
"FCS_TLSS_EXT.1.8": 1
},
"FIA": {
"FIA_AFL.1": 7,
"FIA_AFL.1.1": 1,
"FIA_AFL.1.2": 1,
"FIA_PMG_EXT.1": 4,
"FIA_PMG_EXT.1.1": 1,
"FIA_UAU.7": 5,
"FIA_UAU_EXT.2": 1,
"FIA_UIA_EXT.1": 5,
"FIA_UIA_EXT.1.1": 1,
"FIA_UIA_EXT.1.2": 1,
"FIA_UIA_EXT.1.3": 3,
"FIA_UIA_EXT.1.4": 1
},
"FMT": {
"FMT_MOF": 8,
"FMT_MOF.1": 2,
"FMT_MTD": 8,
"FMT_MTD.1": 2,
"FMT_SMF.1": 4,
"FMT_SMF.1.1": 2,
"FMT_SMR": 1,
"FMT_SMR.2": 4,
"FMT_SMR.2.1": 1,
"FMT_SMR.2.2": 1,
"FMT_SMR.2.3": 1
},
"FPT": {
"FPT_APW_EXT.1": 5,
"FPT_APW_EXT.1.1": 1,
"FPT_APW_EXT.1.2": 1,
"FPT_SKP_EXT.1": 4,
"FPT_SKP_EXT.1.1": 1,
"FPT_STM_EXT.1": 4,
"FPT_STM_EXT.1.1": 1,
"FPT_STM_EXT.1.2": 1,
"FPT_TST_EXT.1": 5,
"FPT_TST_EXT.1.1": 1,
"FPT_TST_EXT.1.2": 1,
"FPT_TUD_EXT.1": 4,
"FPT_TUD_EXT.1.1": 1,
"FPT_TUD_EXT.1.2": 1,
"FPT_TUD_EXT.1.3": 1
},
"FTA": {
"FTA_SSL.3": 4,
"FTA_SSL.3.1": 1,
"FTA_SSL.4": 4,
"FTA_SSL.4.1": 1,
"FTA_SSL_EXT.1": 4,
"FTA_SSL_EXT.1.1": 1,
"FTA_TAB.1": 6,
"FTA_TAB.1.1": 1
},
"FTP": {
"FTP_ITC.1": 5,
"FTP_ITC.1.1": 1,
"FTP_ITC.1.2": 1,
"FTP_ITC.1.3": 1,
"FTP_TRP": 4,
"FTP_TRP.1": 3
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 5
},
"CTR": {
"CTR": 2
},
"ECB": {
"ECB": 1
},
"GCM": {
"GCM": 6
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 4
},
"TLS": {
"TLS": 66,
"TLS 1.2": 8,
"TLS 1.3": 6,
"TLS v1.2": 3,
"TLS v1.3": 3,
"TLSv1.1": 2,
"TLSv1.2": 10,
"TLSv1.3": 10
}
},
"VPN": {
"VPN": 3
}
},
"crypto_scheme": {
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-224": 2,
"P-256": 16,
"P-384": 24,
"P-521": 22,
"secp256r1": 8,
"secp384r1": 6,
"secp521r1": 6
}
},
"eval_facility": {
"Acumen": {
"Acumen Security": 1
},
"Intertek": {
"Intertek": 1
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 5
},
"SHA2": {
"SHA-256": 11,
"SHA-384": 3,
"SHA-512": 6
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 15
},
"RNG": {
"RBG": 2
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS PUB 186-4": 12,
"FIPS PUB 186-5": 11,
"FIPS186-4": 1,
"FIPS186-5": 5
},
"ISO": {
"ISO/IEC 10118-": 2,
"ISO/IEC 14888-3": 4,
"ISO/IEC 18031:2011": 4,
"ISO/IEC 9796-2": 2,
"ISO/IEC 9797-": 1
},
"NIST": {
"NIST SP 800-186": 1,
"NIST SP 800-56A": 1,
"NIST SP 800-90": 1
},
"PKCS": {
"PKCS #1": 4
},
"RFC": {
"RFC 1035": 1,
"RFC 2818": 8,
"RFC 2986": 1,
"RFC 3268": 4,
"RFC 3447": 1,
"RFC 3986": 1,
"RFC 5246": 8,
"RFC 5280": 4,
"RFC 5289": 12,
"RFC 5424": 1,
"RFC 5425": 1,
"RFC 6125": 2,
"RFC 8017": 1,
"RFC 8422": 8,
"RFC 8446": 3
},
"X509": {
"X.509": 13
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 13,
"AES-256": 2
}
},
"constructions": {
"MAC": {
"HMAC": 5,
"HMAC-SHA-256": 3,
"HMAC-SHA-384": 3
}
}
},
"technical_report_id": {},
"tee_name": {
"IBM": {
"SSC": 1
}
},
"tls_cipher_suite": {
"TLS": {
"TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA": 5,
"TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256": 5,
"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 5,
"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA": 5,
"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384": 5,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 5,
"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA": 5,
"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256": 5,
"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA": 5,
"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384": 5,
"TLS_RSA_WITH_AES_128_CBC_SHA": 5,
"TLS_RSA_WITH_AES_128_CBC_SHA256": 5,
"TLS_RSA_WITH_AES_256_CBC_SHA": 5,
"TLS_RSA_WITH_AES_256_CBC_SHA256": 5
}
},
"vendor": {
"Microsoft": {
"Microsoft": 1
}
},
"vulnerability": {}
},
"st_metadata": {
"/Author": "Jenn Lobb",
"/CreationDate": "D:20250626063319+00\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2016",
"/ModDate": "D:20250626063320Z",
"/Producer": "www.ilovepdf.com",
"pdf_file_size_bytes": 2184757,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://forums.ivanti.com/s/contactsupport?language=en_US"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 61
}
},
"protection_profile_links": {
"_type": "Set",
"elements": [
"https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/NDcPP_v3_0e.pdf"
]
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11564-vr.pdf",
"scheme": "US",
"security_level": {
"_type": "Set",
"elements": []
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11564-st.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": true,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "2e5c59e6e3387b5bd03c20341866e62d51b9e875345f28f821ad2c2d1a605ce5",
"txt_hash": "bef0cee65404a39aea888376001e11d276ad54f0dacc3ecf9d2fa2926daa39ab"
},
"report": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "5a176135ed705ab0ef334f80159553bf83b91cfad4cdb08dc0bb63b93df06ed5",
"txt_hash": "f9dae8dc959d61b6ceb436fa09b55d7699871943f1b17bd3c2096323f93e833f"
},
"st": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "41e46fc8ce98683c1db7093c13e059c926b5b63b77104b093fcd1c9086308805",
"txt_hash": "4858433ddb723bcc25879674ad5918f71035ed1abd572665aa7cabf5f7994e22"
}
},
"status": "active"
}