Archer Special Advisory: React2Shell
Special advisories relate to CVEs and security events with broad industry interest even when we know our products and platforms are not affected.
Applies To
React Publication: Critical Security Vulnerability in React Server Components – React
CVE Details: CVE Record: CVE-2025-55182, NVD - CVE-2025-66478 [duplicate]
Details
Archer is aware of React Server Components Vulnerability (CVE-2025-55182) disclosed on December 3, 2025.
The following products are not affected:
· Archer Application
· Archer SaaS and Archer Hosted
· Archer Engage for Vendors
· Archer Engage for Business
· Archer Insight
· Archer Document Governance
· Archer Evolv
Next Steps
We will continue to monitor this situation. Archer systems will be updated with the latest indicators of compromise (IOCs), and we will continuously monitor any use of this software in our environments.
This page will be updated with relevant information as Archer deems necessary. If new information changes the details contained in this advisory, it will be updated.
Please check back regularly for more information or direct specific concerns to your Archer Account Manager and/or Archer Technical Support representative.
Legal Information
Read and use the information in this Archer Security Advisory to assist in avoiding any situation that might arise from the problems described herein. If you have any questions regarding this advisory, contact Archer Technical Support. Archer distributes Archer Security Advisories in order to bring to the attention of users of the affected Archer products important security information.
Originally posted on December 5, 2025 in the Archer Community.
Comments
0 comments
Please sign in to leave a comment.