CVE-2025-55129

Name of the Vulnerable Software and Affected Versions Revive Adserver (affected versions not specified)

Description The software contains a flaw in username validation that allows anyone to register look-alike accounts and impersonate administrators. This issue persists after a previous fix for CVE-2025-52672, with impersonation possible through several alternate techniques, including homoglyphs. The vulnerability could indirectly impact over 1–10 million users through ad-delivery chains across thousands of installations worldwide. The issue involves handling of usernames, potentially allowing malicious actors to create accounts that visually resemble legitimate administrator accounts.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.