Skip to content
CISA Known Exploited Vulnerability

CVE-2025-55182

Meta React Server Components contains a remote code execution vulnerability that could allow unauthenticated remote code execution by exploiting a flaw in how React decodes payloads sent to React Serv

⚠ Actively exploited (CISA KEV) React 2025
CISA catalog entry
Product
React Server Components
Vendor
Meta
Added to KEV
2025-12-05
Remediation due
2025-12-12

CVE-2025-55182 is tracked in the CISA Known Exploited Vulnerabilities catalog. WebPulse monitors it as part of its framework security intelligence.

View CVE-2025-55182 on the NIST National Vulnerability Database →
Related vulnerabilities
CVE-2026-23869 CVE-2025-11953 CVE-2025-71338 CVE-2025-71336 CVE-2025-71327 CVE-2025-67644 CVE-2025-59532 CVE-2025-4322