Security Vulnerability Detected
Dependency: python-ldap
Criticality: MEDIUM (Score: undefined)
Vulnerability Details
Name: CVE-2025-61912
Description:
python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, ldap.dn.escape_dn_chars() escapes \x00 incorrectly by emitting a backslash followed by a literal NUL byte instead of the RFC-4514 hex form \00. Any application that uses this helper to construct DNs from untrusted input can be made to consistently fail before a request is sent to the LDAP server (e.g., AD), resulting in a client-side denial of service. Version 3.4.5 contains a patch for the issue.
Metadata
"{\"vulnerabilityIdentifiers\":[\"CVE-2025-61912\"],\"published\":\"2025-10-10T22:15:37.637\",\"lastModified\":\"2025-12-04T17:57:59.837\",\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":1.4,\"weaknesses\":[\"CWE-116\",\"CWE-170\"]}"
Security Vulnerability Detected
Dependency:
python-ldapCriticality: MEDIUM (Score: undefined)
Vulnerability Details
Name: CVE-2025-61912
Description:
python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, ldap.dn.escape_dn_chars() escapes \x00 incorrectly by emitting a backslash followed by a literal NUL byte instead of the RFC-4514 hex form \00. Any application that uses this helper to construct DNs from untrusted input can be made to consistently fail before a request is sent to the LDAP server (e.g., AD), resulting in a client-side denial of service. Version 3.4.5 contains a patch for the issue.
Metadata
"{\"vulnerabilityIdentifiers\":[\"CVE-2025-61912\"],\"published\":\"2025-10-10T22:15:37.637\",\"lastModified\":\"2025-12-04T17:57:59.837\",\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":1.4,\"weaknesses\":[\"CWE-116\",\"CWE-170\"]}"