React Server Components vulnerability CVE-2025-55182

A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.

Following an analysis of React Server Components vulnerabilities, we can confirm that the impacted components are not used in any Canon Production Printing products.

React Server Components vulnerability CVE-2025-55182

About us

Products & Technologies

Careers

News

Support