CVE-2025-35431

Summary

CISA Thorium does not escape user controlled strings used in LDAP queries. An authenticated remote attacker can modify LDAP authorization data such as group memberships. Fixed in 1.1.1.

Affected Software

VendorProductVersion RangeStatus
CISAThorium1.0.0 < 1.1.1affected
CISAThorium1.1.1unaffected

Weaknesses

  • CWE-90: CWE-90 Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References