react-server-dom-webpack
npm5 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting react-server-dom-webpackpage 1 of 1
- CVE-2025-55182CRITICALCVSS 10.0EG 10.0⚠ KEV✓ Fixed in 19.0.12025-12-03
vulnerable: 19.0.0
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-…
- CVE-2025-55184HIGHCVSS 7.5EG 7.5✓ Fixed in 19.0.22025-12-11
A pre-authentication denial of service vulnerability exists in React Server Components versions 19.0.0, 19.0.1 19.1.0, 19.1.1, 19.1.2, 19.2.0 and 19.2.1, including the following packages: react-server-dom-parcel, react-server-dom-turbopack…
- CVE-2026-23864HIGHCVSS 7.5EG 7.5✓ Fixed in 19.2.42026-01-26
Multiple denial of service vulnerabilities exist in React Server Components, affecting the following packages: react-server-dom-parcel, react-server-dom-turbopack, react-server-dom-webpack. The vulnerabilities are triggered by sending spe…
- CVE-2026-23869HIGHCVSS 7.5EG 7.5✓ Fixed in 19.2.52026-04-08
A denial of service vulnerability exists in React Server Components, affecting the following packages: react-server-dom-parcel, react-server-dom-turbopack and react-server-dom-webpack (versions 19.0.0 through 19.0.4, 19.1.0 through 19.1.5,…
- CVE-2026-23870HIGHCVSS 7.5EG 7.5✓ Fixed in 19.2.62026-05-06
A denial of service vulnerability could be triggered by sending specially crafted HTTP requests to server function endpoints, this could lead to server crashes, out-of-memory exceptions or excessive CPU usage; affecting the following packa…
Check whether react-server-dom-webpack is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for react-server-dom-webpack CVEs against the assets you own.
Start Free Scan →