zlacker
[return to "RCE Vulnerability in React and Next.js"]
◧
1. AgentK+V
[view]
[source]
2025-12-03 16:04:20
>>rayhaa+(OP)
CVE 10.0 is bonkers for a project this widely used
◧◩
2. j45+PC
[view]
[source]
2025-12-03 18:55:23
>>AgentK+V
The subjects of theses types of posts should report the CVSS severity as 10.0 so the PR speak can't simply deflect to what needs to be done.
◧◩◪
3. WatchD+tw1
[view]
[source]
2025-12-03 23:45:06
>>j45+PC
A CVSS score of 10.0 may be warranted in this case, but so many other CVSS scores are wildly inflated, that the scores don't mean a lot.
◧◩◪◨
4. j45+LC1
[view]
[source]
2025-12-04 00:31:54
>>WatchD+tw1
Regardless it can still provide some context and adjustment cs none.
The above could be seen as spin too, how could cvss be more accurate so you’d feel better?
[go to top]