検出

Next.js Framework React サーバーコンポーネントのリモートコード実行 (CVE-2025-55182)

critical Nessus プラグイン ID 277108

Language:

バージョン 1.7

Jan 5, 2026, 10:40 PM

  • Detection (Added Check for OS Managed Packages)
  • Detection (Exclude certain ZTE CGSL directories by default. Modified Plugins to call Nodejs specific functions for reporting)

Plugin Feed: 202601052240

バージョン 1.6

Dec 19, 2025, 7:37 PM

  • New

Plugin Feed: 202512191937

バージョン 1.5

Dec 17, 2025, 4:56 PM

  • CISA reference
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True")
  • Exploit attributes ("Exploit framework metasploit" set to "True")
  • Exploit attributes ("Exploitability ease" set to "Exploits are available")

Plugin Feed: 202512171656

バージョン 1.4

Dec 5, 2025, 9:00 PM

  • New

Plugin Feed: 202512052100

バージョン 1.3

Dec 5, 2025, 1:34 PM

  • IAVM reference
  • STIG Severity (set to "I")

Plugin Feed: 202512051334

バージョン 1.2

Dec 4, 2025, 7:43 PM

  • CVE (Removed rejected CVE-2025-66478 and replaced it with CVE-2025-55182.)
  • Plugin categorization (Changed agent attribute to all.)

Plugin Feed: 202512041943

バージョン 1.1

Dec 3, 2025, 8:52 PM

  • New

Plugin Feed: 202512032052

* Changelogs are generally available for changes made after Nov 1, 2022