Vulnerability in Python-ldap

CVE-2025-61911

python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, the sanitization method `ldap.filter.escape_filter_chars` can be tricked to skip escaping of special characters when a crafted…

EPSS: 0.000 (12.2th percentile) — read the EPSS interpretation.

Affected products

Python-ldap — versions < 3.4.5

Weakness classification (CWE)

References

https://github.com/python-ldap/python-ldap/security/advisories/GHSA-r7r6-cc7p-4v5m (x_refsource_CONFIRM)
https://github.com/python-ldap/python-ldap/commit/3957526fb1852e84b90f423d9fef34c7af25b85a (x_refsource_MISC)
https://github.com/python-ldap/python-ldap/releases/tag/python-ldap-3.4.5 (x_refsource_MISC)