CVE-2025-66478
CVE-2025-66478 is a security vulnerability that is still awaiting full analysis and scoring.
Key facts
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2025-200984
- Published:
- Last modified:
Description
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
Frequently asked questions
- What is CVE-2025-66478?
- Rejected reason: This CVE is a duplicate of CVE-2025-55182.
- Is CVE-2025-66478 being actively exploited?
- It is not currently listed in CISA's Known Exploited Vulnerabilities catalog, and no EPSS exploit-prediction score is available yet.
- How do I fix CVE-2025-66478?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- Does CVE-2025-66478 have an EU (EUVD) identifier?
- Yes. CVE-2025-66478 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2025-200984.
- When was CVE-2025-66478 published?
- CVE-2025-66478 was published on 2025-12-03.
EU advisories (EUVD)
- https://github.com/vercel/next.js/security/advisories/GHSA-9qr9-h5gf-34mp
- https://nvd.nist.gov/vuln/detail/CVE-2025-66478
- https://github.com/vercel/next.js
- https://nvd.nist.gov/vuln/detail/CVE-2025-55182
- https://github.com/facebook/react/security/advisories/GHSA-fv66-9v8q-g76r
- https://github.com/vitejs/vite-plugin-react/security/advisories/GHSA-fmh4-wr37-44fp