CVE-2026-50739: CWE-284 Improper Access Control - Generic in Revive Adserver
CVE-2026-50739 is an improper access control vulnerability in Revive Adserver 6.0.7 and earlier. It allows a low-privileged user to link their trackers to campaigns owned by other managers due to missing ownership validation in the tracker-campaigns.php script. This leads to inconsistent ownership relationships within the application. The vulnerability has a medium severity with a CVSS score of 4.3 and does not impact confidentiality or availability but affects integrity. No official patch or remediation guidance has been provided yet.
AI Analysis
Technical Summary
This vulnerability is a bypass of a previous fix (CVE-2026-34913) related to ownership validation in Revive Adserver. Specifically, the reverse operation of linking campaigns and trackers via the tracker-campaigns.php script lacked proper ownership checks. Consequently, a low-privileged user can associate their trackers with campaigns managed by other users on the same instance, causing inconsistent ownership relationships. The CVSS 3.0 vector indicates network attack vector, low attack complexity, low privileges required, no user interaction, unchanged scope, no confidentiality or availability impact, and limited integrity impact.
Potential Impact
The vulnerability allows unauthorized linkage of trackers to campaigns owned by other managers, potentially causing data integrity issues within the Revive Adserver environment. There is no impact on confidentiality or availability. This could lead to confusion or mismanagement of campaign ownership but does not directly expose sensitive data or disrupt service availability.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, administrators should monitor user permissions and restrict low-privileged user capabilities related to campaign and tracker management where possible.
CVE-2026-50739: CWE-284 Improper Access Control - Generic in Revive Adserver
Description
CVE-2026-50739 is an improper access control vulnerability in Revive Adserver 6.0.7 and earlier. It allows a low-privileged user to link their trackers to campaigns owned by other managers due to missing ownership validation in the tracker-campaigns.php script. This leads to inconsistent ownership relationships within the application. The vulnerability has a medium severity with a CVSS score of 4.3 and does not impact confidentiality or availability but affects integrity. No official patch or remediation guidance has been provided yet.
CVSS v3.0
Score 4.3medium
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability is a bypass of a previous fix (CVE-2026-34913) related to ownership validation in Revive Adserver. Specifically, the reverse operation of linking campaigns and trackers via the tracker-campaigns.php script lacked proper ownership checks. Consequently, a low-privileged user can associate their trackers with campaigns managed by other users on the same instance, causing inconsistent ownership relationships. The CVSS 3.0 vector indicates network attack vector, low attack complexity, low privileges required, no user interaction, unchanged scope, no confidentiality or availability impact, and limited integrity impact.
Potential Impact
The vulnerability allows unauthorized linkage of trackers to campaigns owned by other managers, potentially causing data integrity issues within the Revive Adserver environment. There is no impact on confidentiality or availability. This could lead to confusion or mismanagement of campaign ownership but does not directly expose sensitive data or disrupt service availability.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, administrators should monitor user permissions and restrict low-privileged user capabilities related to campaign and tracker management where possible.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- hackerone
- Date Reserved
- 2026-06-06T15:00:09.779Z
- Cvss Version
- 3.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a3dd65f4853345fc1fa2e3a
Added to database: 06/26/2026, 01:31:11 UTC
Last enriched: 06/26/2026, 01:46:27 UTC
Last updated: 06/26/2026, 01:46:27 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.