Vulnerability in Python-ldap

CVE-2025-61912

python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, ldap.dn.escape_dn_chars() escapes \x00 incorrectly by emitting a backslash followed by a literal NUL byte instead of the RFC-4…

EPSS: 0.001 (34.1th percentile) — read the EPSS interpretation.

Affected products

Python-ldap — versions < 3.4.5

Weakness classification (CWE)

References

https://github.com/python-ldap/python-ldap/security/advisories/GHSA-p34h-wq7j-h5v6 (x_refsource_CONFIRM)
https://github.com/python-ldap/python-ldap/commit/6ea80326a34ee6093219628d7690bced50c49a3f (x_refsource_MISC)
https://github.com/python-ldap/python-ldap/releases/tag/python-ldap-3.4.5 (x_refsource_MISC)