CVE-2025-13948 | opsre go-ldap-admin up to 20251011 JWT docker-compose.yaml secret key hard-coded key

A vulnerability labeled as problematic has been found in opsre go-ldap-admin up to 20251011. This issue affects some unknown processing of the file docs/docker-compose/docker-compose.yaml of the component JWT Handler. Executing manipulation of the argument secret key can lead to use of hard-coded cryptographic key
.

This vulnerability is tracked as CVE-2025-13948. The attack can be launched remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More