21 matches found
Security Bulletin: IBM Maximo Application Suite uses python-ldap-3.4.4.tar.gz, werkzeug-3.1.4-py3-none-any.whl and werkzeug-3.1.3-py3-none-any.whl which is vulnerable to CVE-2025-61911, CVE-2025-61912, CVE-2026-27199 and CVE-2026-21860.
Summary IBM Maximo Application Suite uses python-ldap-3.4.4.tar.gz, werkzeug-3.1.4-py3-none-any.whl and werkzeug-3.1.3-py3-none-any.whl which is vulnerable to CVE-2025-61911, CVE-2025-61912, CVE-2026-27199 and CVE-2026-21860. This bulletin contains information regarding the vulnerability and its...
Security update for python-ldap (moderate)
openSUSE security update: security update for python-ldap ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20421-1 Rating: moderate References: bsc1251912 bsc1251913 Cross-References: CVE-2025-61911 CVE-2025-61912 CVSS scores: CVE-2025-61911 SUSE : 6...
Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1589)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1377)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1456)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP12 : python-ldap (EulerOS-SA-2026-1377)
According to the versions of the python-ldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : python-ldap is a lightweight directory access protocol LDAP client API for Python. In versions prior to 3.4.5, the sanitization method...
Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1513)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1543)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP12 : python-ldap (EulerOS-SA-2026-1408)
According to the versions of the python-ldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : python-ldap is a lightweight directory access protocol LDAP client API for Python. In versions prior to 3.4.5, the sanitization method...
EulerOS Virtualization 2.10.1 : python-ldap (EulerOS-SA-2026-1543)
According to the versions of the python-ldap packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : python-ldap is a lightweight directory access protocol LDAP client API for Python. In versions prior to 3.4.5, the sanitizatio...
OESA-2025-2686 python-ldap security update
python-ldap: python-ldap provides an object-oriented API to access LDAP directory servers from Python programs. Mainly it wraps the OpenLDAP 2.x libs for that purpose. Additionally the package contains modules for other LDAP-related stuff e.g. processing LDIF, LDAPURLs, LDAPv3 schema, LDAPv3...
OESA-2025-2682 python-ldap security update
python-ldap: python-ldap provides an object-oriented API to access LDAP directory servers from Python programs. Mainly it wraps the OpenLDAP 2.x libs for that purpose. Additionally the package contains modules for other LDAP-related stuff e.g. processing LDIF, LDAPURLs, LDAPv3 schema, LDAPv3...
SUSE-SU-2025:3714-1 Security update for python-ldap
This update for python-ldap fixes the following issues: - CVE-2025-61911: Enforce str for escapefilterchars bsc1251912. - CVE-2025-61912: Escape NULs as per RFC 4514 in escapednchars bsc1251913...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 / 25.10 : Python LDAP vulnerabilities (USN-7828-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7828-1 advisory. It was discovered that Python LDAP incorrectly handled special characters in the special...
CVE-2025-61911
python-ldap is a lightweight directory access protocol LDAP client API for Python. In versions prior to 3.4.5, the sanitization method ldap.filter.escapefilterchars can be tricked to skip escaping of special characters when a crafted list or dict is supplied as the assertionvalue parameter, and t...
USN-7828-1: Python LDAP vulnerabilities
It was discovered that Python LDAP incorrectly handled special characters in the special character filtering function. A remote attacker could possibly use this issue to perform LDAP injection attacks. CVE-2025-61911 Arad Inbar discovered that Python LDAP incorrectly escaped NUL character bytes. ...
python311-ldap-3.4.5-1.1 on GA media (moderate)
python311-ldap-3.4.5-1.1 on GA media Announcement ID: openSUSE-SU-2025:15637-1 Rating: moderate Cross-References: CVE-2025-61911 CVE-2025-61912 CVSS scores: CVE-2025-61911 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2025-61911 SUSE : 5.5...
CVE-2025-61911 vulnerabilities
Vulnerabilities for packages: awx...
anomalydetection (=0.0.0.dev1), athiruma-cloud-governance (>=1.1.89 <=1.1.345) +26 more potentially affected by CVE-2025-61911 via python-ldap (>=3.0.0 <=3.4.4)
python-ldap PYPI version =3.0.0, =1.1.89, =3.1.2, =3.7.1, =1.0.426, =2.2.1.dev6, =0.4.4, =1.0.0, =0.0.0, =1.1.0, =3.7.0, =1.0.0, =1.1.7, =1.8.4 and more Source cves: CVE-2025-61911 Source advisory: SNYK:PYTHON-PYTHONLDAP-13535079...
anomalydetection (=0.0.0.dev1), athiruma-cloud-governance (>=1.1.89 <=1.1.345) +28 more potentially affected by CVE-2025-61911 via python-ldap (>=2.4.19 <=3.4.4)
python-ldap PYPI version =2.4.19, =1.1.89, =3.1.2, =3.7.1, =1.0.426, =2.2.1.dev6, =0.0.2, =0.4.4, =1.0.0, =0.0.0, =1.1.0, =3.7.0, =3.8.0 and more Source cves: CVE-2025-61911 Source advisory: OSV:GHSA-R7R6-CC7P-4V5M...