Lucene search
K

4 matches found

Veracode
Veracode
added 2025/12/13 11:1 a.m.11 views

Denial Of Service (DoS)

react-server-dom-parcel, react-server-dom-turbopack, react-server-dom-webpack and next are vulnerable to a Denial-Of-Service DoS. The vulnerability is due to insufficient patching of unsafe payload deserialization in React Server Components, where maliciously crafted HTTP requests sent to Server...

7.5CVSS6.7AI score0.1888EPSS
Exploits3References6Affected Software5
CVE
CVE
added 2025/12/11 8:5 p.m.58 views

CVE-2025-55184

CVE-2025-55184 is a pre-authentication Denial of Service vulnerability in React Server Components from versions 19.0.0 through 19.2.2 (affecting react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack). The issue arises from unsafe deserialization of HTTP payloads sent t...

7.5CVSS6.6AI score0.65592EPSS
In wildExploits10References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/03 3:40 p.m.14 views

CVE-2025-55182

A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes...

10CVSS7.8AI score0.99562EPSS
Exploits372References2
Positive Technologies
Positive Technologies
added 2025/12/03 12:0 a.m.15 views

PT-2025-48817

Name of the Vulnerable Software and Affected Versions React Server Components versions 19.0.0 through 19.2.0 react-server-dom-parcel versions 19.0.0 through 19.2.0 react-server-dom-turbopack versions 19.0.0 through 19.2.0 react-server-dom-webpack versions 19.0.0 through 19.2.0 Description A...

10CVSS7.7AI score0.99562EPSS
Exploits372
Rows per page
Query Builder