zlacker

[return to "RCE Vulnerability in React and Next.js"]
1. karimf+6s[view] [source] 2025-12-03 18:03:13
>>rayhaa+(OP)
> Projects hosted on Vercel benefit from platform-level protections that already block malicious request patterns associated with this issue.

https://vercel.com/changelog/cve-2025-55182

> Cloudflare WAF proactively protects against React vulnerability

https://blog.cloudflare.com/waf-rules-react-vulnerability/

◧◩
2. Rauchg+Os[view] [source] 2025-12-03 18:07:12
>>karimf+6s
We collaborated with many industry partners to proactively deploy mitigations due to the severity of the issue.

We still strongly recommend everyone to upgrade their Next, React, and other React meta-frameworks (peer)dependencies immediately.

◧◩◪
3. semiqu+mG[view] [source] 2025-12-03 19:14:16
>>Rauchg+Os
Does AWS WAF have a mitigation in place?
[go to top]