knil 在 React 的 server function 又被挖出来一个漏洞，影响 nextjs 13 和 14 中发帖ImpactDenial of Service: CVE-2025-55184 (High Severity)A specifically crafted HTTP request can be sent to any App Router endpoint that, when deserialized, can cause an infinite loop that hangs the server process and prevents future HTTP requests from being served. Note: The initial fix for this vulnerability was incomplete. A complete fix has been issued under CVE-2025-67779. Users who previou...

knil 在 React 的 server function 又被挖出来一个漏洞，影响 nextjs 13 和 14 中发帖

Impact
Denial of Service: CVE-2025-55184 (High Severity)
A specifically crafted HTTP request can be sent to any App Router endpoint that, when deserialized, can cause an infinite loop that hangs the server process and prevents future HTTP requests from being served. 

Note: The initial fix for this vulnerability was incomplete. A complete fix has been issued under CVE-2025-67779. Users who previou...