{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-48986", "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "state": "PUBLISHED", "assignerShortName": "hackerone", "dateReserved": "2025-05-29T15:00:04.775Z", "datePublished": "2025-11-20T19:11:36.449Z", "dateUpdated": "2025-11-20T21:38:49.611Z"}, "containers": {"cna": {"descriptions": [{"lang": "en", "value": "Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an logged in attacker to change other users' email address and potentialy take over their accounts using the forgot password functionality."}], "affected": [{"vendor": "Revive", "product": "Revive Adserver", "versions": [{"version": "5", "status": "affected", "lessThanOrEqual": "5.5.2", "versionType": "semver"}, {"version": "5.5.3", "status": "unaffected", "lessThanOrEqual": "5.5.3", "versionType": "semver"}, {"version": "6.0.2", "status": "unaffected", "lessThanOrEqual": "6.0.2", "versionType": "semver"}, {"version": "6", "status": "affected", "lessThanOrEqual": "6.0.1", "versionType": "semver"}]}], "references": [{"url": "https://hackerone.com/reports/3398283"}], "metrics": [{"cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 8.8, "baseSeverity": "HIGH"}}], "providerMetadata": {"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "shortName": "hackerone", "dateUpdated": "2025-11-20T19:11:36.449Z"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-284", "lang": "en", "description": "CWE-284 Improper Access Control"}]}], "references": [{"url": "https://hackerone.com/reports/3398283", "tags": ["exploit"]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-11-20T21:38:45.725279Z", "id": "CVE-2025-48986", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-20T21:38:49.611Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-48986", "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "state": "PUBLISHED", "assignerShortName": "hackerone", "dateReserved": "2025-05-29T15:00:04.775Z", "datePublished": "2025-11-20T19:11:36.449Z", "dateUpdated": "2025-11-20T21:38:49.611Z"}, "containers": {"cna": {"descriptions": [{"lang": "en", "value": "Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an logged in attacker to change other users' email address and potentialy take over their accounts using the forgot password functionality."}], "affected": [{"vendor": "Revive", "product": "Revive Adserver", "versions": [{"version": "5", "status": "affected", "lessThanOrEqual": "5.5.2", "versionType": "semver"}, {"version": "5.5.3", "status": "unaffected", "lessThanOrEqual": "5.5.3", "versionType": "semver"}, {"version": "6.0.2", "status": "unaffected", "lessThanOrEqual": "6.0.2", "versionType": "semver"}, {"version": "6", "status": "affected", "lessThanOrEqual": "6.0.1", "versionType": "semver"}]}], "references": [{"url": "https://hackerone.com/reports/3398283"}], "metrics": [{"cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 8.8, "baseSeverity": "HIGH"}}], "providerMetadata": {"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "shortName": "hackerone", "dateUpdated": "2025-11-20T19:11:36.449Z"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-48986", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-11-20T21:38:45.725279Z"}}}], "references": [{"url": "https://hackerone.com/reports/3398283", "tags": ["exploit"]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284 Improper Access Control"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-20T21:38:40.438Z"}}]}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an logged in attacker to change other users' email address and potentialy take over their accounts using the forgot password functionality."}], "id": "CVE-2025-48986", "lastModified": "2025-11-21T15:13:13.800", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "support@hackerone.com", "type": "Secondary"}]}, "published": "2025-11-20T20:16:22.407", "references": [{"source": "support@hackerone.com", "url": "https://hackerone.com/reports/3398283"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "url": "https://hackerone.com/reports/3398283"}], "sourceIdentifier": "support@hackerone.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-284"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}