CVE-2025-55123

🗓️ 20 Nov 2025 19:10:15Reported by hackeroneType

CVE-2025-55123: Revive Adserver allows manager accounts to craft XSS against advertiser users.

Reporter	Title	Published	Views	Family All 9
CNNVD	Revive Adserver 安全漏洞	20 Nov 202500:00	–	cnnvd
CNVD	Revive Adserver Cross-Site Scripting Vulnerability (CNVD-2025-29419)	24 Nov 202500:00	–	cnvd
Cvelist	CVE-2025-55123	20 Nov 202519:10	–	cvelist
EUVD	EUVD-2025-198349	20 Nov 202521:30	–	euvd
Hacker One	Revive Adserver: Stored-XSS in Banner Name field	30 Oct 202502:36	–	hackerone
NVD	CVE-2025-55123	20 Nov 202520:16	–	nvd
Positive Technologies	PT-2025-47622	20 Nov 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-55123	21 Nov 202519:37	–	redhatcve
Vulnrichment	CVE-2025-55123	20 Nov 202519:10	–	vulnrichment

NVD

Node

revive-adserver revive_adserverMatch6.0.0-

[
  {
    "vendor": "Revive",
    "product": "Revive Adserver",
    "versions": [
      {
        "version": "6",
        "status": "affected",
        "lessThanOrEqual": "6.0.1",
        "versionType": "semver"
      },
      {
        "version": "5",
        "status": "affected",
        "lessThanOrEqual": "5.5.2",
        "versionType": "semver"
      },
      {
        "version": "6.0.2",
        "status": "unaffected",
        "lessThanOrEqual": "6.0.2",
        "versionType": "semver"
      },
      {
        "version": "5.5.3",
        "status": "unaffected",
        "lessThanOrEqual": "5.5.3",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
hackerone	www.hackerone.com/reports/3404968

05 Dec 2025 20:17Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.4

CVSS 33.5

EPSS0.00016

SSVC

CWE-79