Description

HackerOne community member Kassem S.(kassem_s94) has reported that username handling in Revive Adserver was still vulnerable to impersonation attacks after the fix for CVE-2025-52672, via several alternate techniques. Homoglyphs based impersonation has been independently reported by other HackerOne users, such as itz_hari_ and khoof.

INFO

Published Date :

2025-12-02T01:42:06.085Z

Last Modified :

2025-12-02T18:28:26.884Z

Source :

hackerone
AFFECTED PRODUCTS

The following products are affected by CVE-2025-55129 vulnerability.

Vendors Products
Aquaplatform
  • Revive Adserver
Revive
  • Adserver
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-55129.

URL Resource
https://hackerone.com/reports/3434156 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact