Security Advisory

CVE-2025-55129

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-02 01:42:06

Last updated 2025-12-02 18:28:26

Assigner hackerone

State PUBLISHED

Description

HackerOne community member Kassem S.(kassem_s94) has reported that username handling in Revive Adserver was still vulnerable to impersonation attacks after the fix for CVE-2025-52672, via several alternate techniques. Homoglyphs based impersonation has been independently reported by other HackerOne users, such as itz_hari_ and khoof.

← Browse all CVEs View on cve.org ↗