Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-27231

The LDAP 'Bind password' value cannot be read after saving, but a Super Admin account can leak it by changing LDAP 'Host' to a rogue LDAP server. To mitigate this, the 'Bind password' value is now reset on 'Host' change.

Published

2025-10-03T12:15:43.593

Last Modified

2025-10-08T14:54:17.540

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.9 (MEDIUM)

Weaknesses

Type: Secondary
CWE-522

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	zabbix	zabbix	< 6.0.41	Yes
Application	zabbix	zabbix	< 7.0.18	Yes
Application	zabbix	zabbix	< 7.2.12	Yes
Application	zabbix	zabbix	< 7.4.2	Yes

References

https://support.zabbix.com/browse/ZBX-27062 Vendor Advisory ([email protected])