Home / Security updates / ClickHouse Response to React (CVE-2025-55182) and Next.js (CVE-2025-66478) vulnerabilities
ClickHouse Response to React (CVE-2025-55182) and Next.js (CVE-2025-66478) vulnerabilities
Security updates detail rendered from /security-updates/upd_dbb08d12424a136e.
Overview
| ID | upd_dbb08d12424a136e |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | ClickHouse |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_dbb08d12424a136e |
| providerId | safebase |
| organizationId | org_daf05af3b6d3604e |
| trustCenterId | tc_9eeef6c5d486333b |
| title | ClickHouse Response to React (CVE-2025-55182) and Next.js (CVE-2025-66478) vulnerabilities |
| message | ClickHouse Cloud is not impacted by the recently published vulnerabilities affecting React (CVE-2025-55182) and Next.js (CVE-2025-66478). Our security team has completed a thorough investigation and confirmed that our platform does not utilize the specific React Server Components (RSC) configurations required for exploitation. No action is required by our customers. |
| url | - |
| publishedAt | 2025-12-04 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "vulnerabilities"
} |
| company | {
"id": "org_daf05af3b6d3604e",
"name": "ClickHouse",
"domains": [
"trust.clickhouse.com",
"clickhouse.com"
]
} |
| trust_center | {
"id": "tc_9eeef6c5d486333b",
"name": "ClickHouse",
"url": "https://trust.clickhouse.com",
"host": "trust.clickhouse.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_dbb08d12424a136e",
"company": "/v1/companies/org_daf05af3b6d3604e",
"trust_center": "/v1/trust-centers/tc_9eeef6c5d486333b",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_dbb08d12424a136eJSON