Unrated severityNVD Advisory· Published Oct 3, 2025· Updated Oct 3, 2025
LDAP 'Bind password' field value can be leaked by a Zabbix Super Admin
CVE-2025-27231
Description
The LDAP 'Bind password' value cannot be read after saving, but a Super Admin account can leak it by changing LDAP 'Host' to a rogue LDAP server. To mitigate this, the 'Bind password' value is now reset on 'Host' change.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.