Description

python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, ldap.dn.escape_dn_chars() escapes \x00 incorrectly by emitting a backslash followed by a literal NUL byte instead of the RFC-4514 hex form \00. Any application that uses this helper to construct DNs from untrusted input can be made to consistently fail before a request is sent to the LDAP server (e.g., AD), resulting in a client-side denial of service. Version 3.4.5 contains a patch for the issue.

INFO

Published Date :

2025-10-10T22:04:25.028Z

Last Modified :

2025-10-14T14:58:06.682Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-61912 vulnerability.

Vendors Products
Python-ldap
  • Python-ldap
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-61912.

URL Resource
https://github.com/python-ldap/python-ldap/commit/6ea80326a34ee6093219628d7690bced50c49a3f cve-icon cve-icon cve-icon
https://github.com/python-ldap/python-ldap/releases/tag/python-ldap-3.4.5 cve-icon cve-icon cve-icon
https://github.com/python-ldap/python-ldap/security/advisories/GHSA-p34h-wq7j-h5v6 cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-61912 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-61912 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact