CVE-2025-13948 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability was determined in opsre go-ldap-admin up to 20251011. This issue affects some unknown processing of the file docs/docker-compose/docker-compose.…
Medium CVSS: 6.3

CVE-2025-13948

A vulnerability was determined in opsre go-ldap-admin up to 20251011. This issue affects some unknown processing of the file docs/docker-compose/docker-compose.yaml of the component JWT Handler. Executing manipulation of the argument secret key can lead to use of hard-coded cryptographic key
. The attack can be launched remotely. Attacks of this nature are highly complex. The exploitability is assessed as difficult. The exploit has been publicly disclosed and may be utilized.
Vendor
-
Product
-
CWE
CWE-320
Yayın Tarihi
2025-12-03 15:15:51
Güncelleme
2025-12-04 17:15:08
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-320 MEDIUM 2025

Referanslar

https://gist.github.com/H2u8s/a51ac1fe38d62746d1425b70ff49420c https://vuldb.com/?ctiid.334163 https://vuldb.com/?id.334163 https://vuldb.com/?submit.692213