Lucene search
K

21 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/06 2:27 p.m.7 views

Security Bulletin: IBM Maximo Application Suite uses python-ldap-3.4.4.tar.gz, werkzeug-3.1.4-py3-none-any.whl and werkzeug-3.1.3-py3-none-any.whl which is vulnerable to CVE-2025-61911, CVE-2025-61912, CVE-2026-27199 and CVE-2026-21860.

Summary IBM Maximo Application Suite uses python-ldap-3.4.4.tar.gz, werkzeug-3.1.4-py3-none-any.whl and werkzeug-3.1.3-py3-none-any.whl which is vulnerable to CVE-2025-61911, CVE-2025-61912, CVE-2026-27199 and CVE-2026-21860. This bulletin contains information regarding the vulnerability and its...

6.9CVSS6.4AI score0.00556EPSS
Exploits3Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/28 12:0 a.m.12 views

Security update for python-ldap (moderate)

openSUSE security update: security update for python-ldap ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20421-1 Rating: moderate References: bsc1251912 bsc1251913 Cross-References: CVE-2025-61911 CVE-2025-61912 CVSS scores: CVE-2025-61911 SUSE : 6...

6.9CVSS6.5AI score0.00427EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2026/03/17 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1589)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS5.8AI score0.00427EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.6 views

Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1377)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS5.8AI score0.00427EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1456)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS5.8AI score0.00427EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.5 views

EulerOS 2.0 SP12 : python-ldap (EulerOS-SA-2026-1377)

According to the versions of the python-ldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : python-ldap is a lightweight directory access protocol LDAP client API for Python. In versions prior to 3.4.5, the sanitization method...

6.9CVSS5.9AI score0.00427EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1513)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS5.8AI score0.00427EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for python-ldap (EulerOS-SA-2026-1543)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS5.8AI score0.00427EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.6 views

EulerOS 2.0 SP12 : python-ldap (EulerOS-SA-2026-1408)

According to the versions of the python-ldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : python-ldap is a lightweight directory access protocol LDAP client API for Python. In versions prior to 3.4.5, the sanitization method...

6.9CVSS5.9AI score0.00427EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.7 views

EulerOS Virtualization 2.10.1 : python-ldap (EulerOS-SA-2026-1543)

According to the versions of the python-ldap packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : python-ldap is a lightweight directory access protocol LDAP client API for Python. In versions prior to 3.4.5, the sanitizatio...

6.9CVSS6.5AI score0.00427EPSS
Exploits2References3
OSV
OSV
added 2025/11/14 12:39 p.m.6 views

OESA-2025-2686 python-ldap security update

python-ldap: python-ldap provides an object-oriented API to access LDAP directory servers from Python programs. Mainly it wraps the OpenLDAP 2.x libs for that purpose. Additionally the package contains modules for other LDAP-related stuff e.g. processing LDIF, LDAPURLs, LDAPv3 schema, LDAPv3...

6.9CVSS6.9AI score0.00427EPSS
Exploits2References3
OSV
OSV
added 2025/11/14 12:39 p.m.4 views

OESA-2025-2682 python-ldap security update

python-ldap: python-ldap provides an object-oriented API to access LDAP directory servers from Python programs. Mainly it wraps the OpenLDAP 2.x libs for that purpose. Additionally the package contains modules for other LDAP-related stuff e.g. processing LDIF, LDAPURLs, LDAPv3 schema, LDAPv3...

6.9CVSS6.9AI score0.00427EPSS
Exploits2References3
OSV
OSV
added 2025/10/22 7:10 a.m.2 views

SUSE-SU-2025:3714-1 Security update for python-ldap

This update for python-ldap fixes the following issues: - CVE-2025-61911: Enforce str for escapefilterchars bsc1251912. - CVE-2025-61912: Escape NULs as per RFC 4514 in escapednchars bsc1251913...

6.9CVSS7AI score0.00427EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.8 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 / 25.10 : Python LDAP vulnerabilities (USN-7828-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7828-1 advisory. It was discovered that Python LDAP incorrectly handled special characters in the special...

6.9CVSS6.6AI score0.00427EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2025/10/20 10:30 p.m.4 views

CVE-2025-61911

python-ldap is a lightweight directory access protocol LDAP client API for Python. In versions prior to 3.4.5, the sanitization method ldap.filter.escapefilterchars can be tricked to skip escaping of special characters when a crafted list or dict is supplied as the assertionvalue parameter, and t...

6.9CVSS6.7AI score0.00301EPSS
Exploits1References1
Ubuntu
Ubuntu
added 2025/10/20 12:41 p.m.10 views

USN-7828-1: Python LDAP vulnerabilities

It was discovered that Python LDAP incorrectly handled special characters in the special character filtering function. A remote attacker could possibly use this issue to perform LDAP injection attacks. CVE-2025-61911 Arad Inbar discovered that Python LDAP incorrectly escaped NUL character bytes. ...

6.9CVSS6.5AI score0.00427EPSS
Exploits2
OPENSUSE Linux
OPENSUSE Linux
added 2025/10/16 12:0 a.m.7 views

python311-ldap-3.4.5-1.1 on GA media (moderate)

python311-ldap-3.4.5-1.1 on GA media Announcement ID: openSUSE-SU-2025:15637-1 Rating: moderate Cross-References: CVE-2025-61911 CVE-2025-61912 CVSS scores: CVE-2025-61911 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2025-61911 SUSE : 5.5...

6.9CVSS7.2AI score0.00427EPSS
Exploits2
Chainguard
Chainguard
added 2025/10/14 8:9 p.m.6 views

CVE-2025-61911 vulnerabilities

Vulnerabilities for packages: awx...

6.9CVSS7AI score0.00301EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2025/10/10 10:51 p.m.5 views

anomalydetection (=0.0.0.dev1), athiruma-cloud-governance (>=1.1.89 <=1.1.345) +26 more potentially affected by CVE-2025-61911 via python-ldap (>=3.0.0 <=3.4.4)

python-ldap PYPI version =3.0.0, =1.1.89, =3.1.2, =3.7.1, =1.0.426, =2.2.1.dev6, =0.4.4, =1.0.0, =0.0.0, =1.1.0, =3.7.0, =1.0.0, =1.1.7, =1.8.4 and more Source cves: CVE-2025-61911 Source advisory: SNYK:PYTHON-PYTHONLDAP-13535079...

6.9CVSS6.5AI score0.00301EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2025/10/10 10:51 p.m.4 views

anomalydetection (=0.0.0.dev1), athiruma-cloud-governance (>=1.1.89 <=1.1.345) +28 more potentially affected by CVE-2025-61911 via python-ldap (>=2.4.19 <=3.4.4)

python-ldap PYPI version =2.4.19, =1.1.89, =3.1.2, =3.7.1, =1.0.426, =2.2.1.dev6, =0.0.2, =0.4.4, =1.0.0, =0.0.0, =1.1.0, =3.7.0, =3.8.0 and more Source cves: CVE-2025-61911 Source advisory: OSV:GHSA-R7R6-CC7P-4V5M...

6.9CVSS6.5AI score0.00301EPSS
Exploits1
Rows per page
Query Builder