CVE-2025-27231: 
Zabbix Server vulnerability analysis and mitigation

CVE-2025-27231 is a security vulnerability discovered in Zabbix affecting versions 6.0.0-6.0.40, 7.0.0-7.0.17, 7.2.0-7.2.11, and 7.4.0-7.4.1. The vulnerability allows a Zabbix Super Admin to leak the LDAP 'Bind password' value by manipulating the LDAP 'Host' setting to point to a rogue LDAP server. This vulnerability was discovered by Vladislav Volozhenko and was assigned a CVSS v4.0 score of 4.3 (Medium) (Zabbix).

The vulnerability is classified as an Insufficiently Protected Credentials issue (CWE-522). The CVSS v4.0 vector string is CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N, indicating that while the attack requires high privileges and adjacent network access, it can lead to high security scope impact. The technical issue stems from the ability to expose the LDAP 'Bind password' value, which is normally hidden after saving, through manipulation of the LDAP 'Host' configuration (Zabbix).

The vulnerability allows privileged users (Super Admins) to expose sensitive LDAP bind password credentials, which could potentially lead to unauthorized access to LDAP authentication systems. While the direct impact requires high privileges to exploit, the exposure of LDAP credentials could have significant security implications for the affected organization (Zabbix).

The vulnerability has been fixed in Zabbix versions 6.0.41, 7.0.18, 7.2.12, and 7.4.2. The fix implements a security measure where the 'Bind password' value is automatically reset when the LDAP 'Host' setting is changed. Organizations are advised to update to the fixed versions of Zabbix to mitigate this vulnerability (Zabbix).