What are the implications for a node running a vulnerable application? Since remote code execution is possible, could it theoretically bring down the entire node and/or subnet running the app?
Hey @linux556
We do monitor for new vulnerabilities that are being disclosed and affect the ICP stack. Patches and mitigations are applied as soon as they are available.
In that particular case (CVE-2025-55182), I am not quite sure how it relates to ICP as it is a vulnerability in react server components, which are not being used.
2 Likes