Critical
Low
Medium
CVE-2025-35431
Overview
CISA Thorium does not escape user controlled strings used in LDAP queries. An authenticated remote attacker can modify LDAP authorization data such as group memberships. Fixed in 1.1.1.
Critical
Low
Medium
No items found.