BigFix Inventory SignaturesBigFix Inventory Signatures

react-server-dom CVE-2025-55182, 19.AFFECTED
Log In or Register to download the signature, and more.


Description

Detection for react-server-components.
This signature detects react-server-components that are vulnerable to CVE-2025-55182.
These signatures are rapid-release to accommodate the urgency of this issue.
The signatures may not have been fully regression-tested on all platforms. Please take care when adding custom signatures to BigFix Inventory.

Property Details

PublisherReact.dev
Product Namereact-server-dom CVE-2025-55182
Software Release19.AFFECTED
Keywordsreact-server-components, CVE-2025-55182, npm
Software UniqueId6f710450-d14d-11f0-b556-005056a83ca3
Uploaded by on 12/4/2025 1:19:04 PM
Last modified by on 12/4/2025 1:25:28 PM
Counters 14 Downloads
User Rating 1 star 2 star 3 star 4 star 5 star * Average over 0 ratings. ** Log In or Register to add your rating.

Signature Content

<?xml version="1.0" encoding="utf-8"?>
<SoftwareIdentityCatalog exportTimeStamp="2025-12-04T20:12:59Z">
  <Software name="react-server-dom CVE-2025-55182" vendor="React.dev" uniqueId="6f710450-d14d-11f0-b556-005056a83ca3" version="19.AFFECTED">
    <Signature uniqueId="856cea80-d14d-11f0-b556-005056a83ca3" modified="2025-12-04T20:12:13Z" created="2025-12-04T20:12:13Z">
      <ExtendedSignature><![CDATA[<MultipleInstance><Iterator export="true" name="INSTALL_PATH"><Vector filter="*\react-server-dom-parcel\"><FindFilePathEx appendFileName="false" name="package.json"/></Vector></Iterator><Instance><Variable export="false" name="size"><FileInfoCompare absolutePath="$(INSTALL_PATH)\package.json" field="size" relation="le" value="512000"/></Variable><Condition withVariable="size"><Action do="SKIP" onValue="false"/></Condition><Variable export="false" name="file_read"><ReadFile path="$(INSTALL_PATH)\package.json"/></Variable><Variable export="false" name="ver_line"><VectorToScalar><Substring inputString="$(file_read)" searchedString="&quot;version&quot;: &quot;"/></VectorToScalar></Variable><Variable name="DETAILED_VER"><StringCrop endString="&quot;" inputString="$(ver_line)" seekFrom="left" startString="&quot;version&quot;: &quot;"/></Variable><Variable name="IS_INSTALLED"><And><Compare relation="ge" type="version"><ValueOf value="$(DETAILED_VER)"/><ValueOf value="19.0.0"/></Compare><Compare relation="le" type="version"><ValueOf value="$(DETAILED_VER)"/><ValueOf value="19.2.0"/></Compare></And></Variable><Condition withVariable="IS_INSTALLED"><Action do="SKIP" onValue="false"/></Condition></Instance></MultipleInstance>]]></ExtendedSignature>
    </Signature>
    <Signature uniqueId="9c4fae40-d14d-11f0-b556-005056a83ca3" modified="2025-12-04T20:12:51Z" created="2025-12-04T20:12:51Z">
      <ExtendedSignature><![CDATA[<MultipleInstance><Iterator export="true" name="INSTALL_PATH"><Vector filter="*\react-server-dom-turbopack\"><FindFilePathEx appendFileName="false" name="package.json"/></Vector></Iterator><Instance><Variable export="false" name="size"><FileInfoCompare absolutePath="$(INSTALL_PATH)\package.json" field="size" relation="le" value="512000"/></Variable><Condition withVariable="size"><Action do="SKIP" onValue="false"/></Condition><Variable export="false" name="file_read"><ReadFile path="$(INSTALL_PATH)\package.json"/></Variable><Variable export="false" name="ver_line"><VectorToScalar><Substring inputString="$(file_read)" searchedString="&quot;version&quot;: &quot;"/></VectorToScalar></Variable><Variable name="DETAILED_VER"><StringCrop endString="&quot;" inputString="$(ver_line)" seekFrom="left" startString="&quot;version&quot;: &quot;"/></Variable><Variable name="IS_INSTALLED"><And><Compare relation="ge" type="version"><ValueOf value="$(DETAILED_VER)"/><ValueOf value="19.0.0"/></Compare><Compare relation="le" type="version"><ValueOf value="$(DETAILED_VER)"/><ValueOf value="19.2.0"/></Compare></And></Variable><Condition withVariable="IS_INSTALLED"><Action do="SKIP" onValue="false"/></Condition></Instance></MultipleInstance>]]></ExtendedSignature>
    </Signature>
    <Signature uniqueId="6f0a0520-d14d-11f0-b556-005056a83ca3" modified="2025-12-04T20:11:35Z" created="2025-12-04T20:11:35Z">
      <ExtendedSignature><![CDATA[<MultipleInstance><Iterator export="true" name="INSTALL_PATH"><Vector filter="*\react-server-dom-webpack\"><FindFilePathEx appendFileName="false" name="package.json"/></Vector></Iterator><Instance><Variable export="false" name="size"><FileInfoCompare absolutePath="$(INSTALL_PATH)\package.json" field="size" relation="le" value="512000"/></Variable><Condition withVariable="size"><Action do="SKIP" onValue="false"/></Condition><Variable export="false" name="file_read"><ReadFile path="$(INSTALL_PATH)\package.json"/></Variable><Variable export="false" name="ver_line"><VectorToScalar><Substring inputString="$(file_read)" searchedString="&quot;version&quot;: &quot;"/></VectorToScalar></Variable><Variable name="DETAILED_VER"><StringCrop endString="&quot;" inputString="$(ver_line)" seekFrom="left" startString="&quot;version&quot;: &quot;"/></Variable><Variable name="IS_INSTALLED"><And><Compare relation="ge" type="version"><ValueOf value="$(DETAILED_VER)"/><ValueOf value="19.0.0"/></Compare><Compare relation="le" type="version"><ValueOf value="$(DETAILED_VER)"/><ValueOf value="19.2.0"/></Compare></And></Variable><Condition withVariable="IS_INSTALLED"><Action do="SKIP" onValue="false"/></Condition></Instance></MultipleInstance>]]></ExtendedSignature>
    </Signature>
  </Software>
</SoftwareIdentityCatalog>

Sharing

Social Media:
Share this page on Yammer


Comments

Log In or Register to leave comments!
RAMESHWARPARSAD -
Is there any similar analysis to detect using Bigfix Lifecycle?
 

Content

Search
Share
Learn
Projects

Utilities

View SCM Scripts
Base64 Converter
Shell to Action Script

About

About Us
Tour
FAQ
Terms
Contact Us

BigFix Resources

Download BigFix
Support
Forum
Github/Bigfix
bigfix.me All Content
Hosted on bigfixme-as