偵測

Node.js React Server 元件未經驗證的遠端程式碼執行 (CVE-2025-55182)

critical Nessus Plugin ID 277105

語言:

版本 1.5

Jan 5, 2026, 10:40 PM

  • Detection (Added Check for OS Managed Packages)
  • Detection (Exclude certain ZTE CGSL directories by default. Modified Plugins to call Nodejs specific functions for reporting)

Plugin Feed: 202601052240

版本 1.4

Dec 19, 2025, 7:37 PM

  • New

Plugin Feed: 202512191937

版本 1.3

Dec 17, 2025, 4:56 PM

  • CISA reference
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True")
  • Exploit attributes ("Exploit framework metasploit" set to "True")
  • Exploit attributes ("Exploitability ease" set to "Exploits are available")

Plugin Feed: 202512171656

版本 1.2

Dec 5, 2025, 1:34 PM

  • IAVM reference
  • STIG Severity (set to "I")

Plugin Feed: 202512051334

版本 1.1

Dec 3, 2025, 8:52 PM

  • New

Plugin Feed: 202512032052

* Changelogs are generally available for changes made after Nov 1, 2022