CVE-2025-55182 is a critical unauthenticated remote-code-execution flaw affecting React Server Components and downstream frameworks such as Next.js, enabling attackers to execute arbitrary code on vulnerable servers.