CVE-2025-48986

Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an logged in attacker to change other users' email address and potentialy take over their accounts using the forgot password functionality.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
hackeroneCNA
8.8 HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
VendorProductVersion
revive-adserverrevive_adserver
𝑥
≤ 5.5.2
revive-adserverrevive_adserver
6.0.0 ≤
𝑥
≤ 6.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://hackerone.com/reports/3398283
https://hackerone.com/reports/3398283