← back
CVE-2025-59518

CVE-2025-59518

CVSS 8 HIGHEPSS 1.2%CWE-78
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8EPSS 1.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
17 Sep 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In LemonLDAP::NG before 2.16.7 and 2.17 through 2.21 before 2.21.3, OS command injection can occur in the Safe jail. It does not Localize _ during rule evaluation. Thus, an administrator who can edit a rule evaluated by the Safe jail can execute commands on the server.
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H