CVE-2025-55128

Summary

HackerOne community member Dang Hung Vi (vidang04) has reported an uncontrolled resource consumption vulnerability in the “userlog-index.php”. An attacker with access to the admin interface could request an arbitrarily large number of items per page, potentially leading to a denial of service.

Affected Software

VendorProductVersion RangeStatus
ReviveRevive Adserver6 <= 6.0.2affected
ReviveRevive Adserver6.0.3 <= 6.0.3unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References