AWS Security Alert: Critical RCE Vulnerability in React & Next.js (CVE-2025-55182)
Amazon Web Services (AWS) has released security bulletin AWS-2025-030 regarding a critical Remote Code Execution (RCE) vulnerability affecting specific versions of React and Next.js. The vulnerability, tracked as CVE-2025-55182 (and the duplicate CVE-2025-66478), lies within the React Server Flight protocol and could allow unauthorized attackers to execute code on application servers. If you are running…