CVE-2025-55182

Aliases:GHSA-fv66-9v8q-g76r

Analyzed

Published: 03 Dec 2025, 15:40

Last modified:11 Dec 2025, 20:15

Vulnerability Summary

Overall Risk (default)

critical

90/100

CVSS Score

10 CRITICAL

v3.1 (cve.org)

EPSS Score

58.42% CRITICAL

58% probability 0.00%

KEV

Listed

CISA

1 listing

Ransomware

Known Use

Public exploits

1 found

Dark Web

Not detected

Timeline

03 Dec 2025, 15:40

Published

Vulnerability first disclosed

05 Dec 2025, 00:00

Added to CISA KEV

Meta React Server Components Remote Code Execution Vulnerability

11 Dec 2025, 20:15

Last Modified

Vulnerability information updated

12 Dec 2025, 00:00

CISA Remediation Due

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Description

CVSS Metrics

EPSS Trends

Weaknesses (CWE)

KEV Details

Exploits (1)

Affected Systems

References (15)