Is CVE-2025-11953 in the CISA Known Exploited Vulnerabilities catalog?

Yes — CVE-2025-11953 is listed in CISA KEV, remediation due 2026-02-26.

CISA Known Exploited Vulnerability

CVE-2025-11953

React Native Community CLI contains an OS command injection vulnerability which could allow unauthenticated network attackers to send POST requests to the Metro Development Server and run arbitrary ex

⚠ Actively exploited (CISA KEV) React 2025

CISA catalog entry

Product

CLI

Vendor

React Native Community

Added to KEV

2026-02-05

Remediation due

2026-02-26

CVE-2025-11953 is tracked in the CISA Known Exploited Vulnerabilities catalog. WebPulse monitors it as part of its framework security intelligence.

View CVE-2025-11953 on the NIST National Vulnerability Database →

Related vulnerabilities

CVE-2026-23869 CVE-2025-55182 CVE-2025-71338 CVE-2025-71336 CVE-2025-71327 CVE-2025-67644 CVE-2025-59532 CVE-2025-4322