9.8

CVSS Score

3.1

-

CVSS Score

Basic Information

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-67489

CVE-2025-67489: @vitejs/plugin-rsc Remote Code Execution through unsafe dynamic imports in RSC server function APIs on development server

Summary

Arbitrary Remote Code Execution on development server via unsafe dynamic imports in @vitejs/plugin-rsc server function APIs (loadServerAction, decodeReply, decodeAction) when integrated into RSC applications that expose server function endpoints.

Impact

Attackers with network access to the development server can execute arbitrary JavaScript code with Node.js privileges, allowing them to read/modify files, exfiltrate sensitive data (source code, environment variables, credentials), or pivot to other internal services. While this affects development servers only, the risk increases when using vite --host to expose the server on all network interfaces.

Details

In the example RSC application provided in Proof of Concept, the server handles server function call through API such as loadServerAction, decodeReply, decodeAction with http request's header and body as inputs:

https://github.com/vitejs/vite-plugin-react/blob/c8af971f57f12d0190d7fd8829a429f5e4112f60/packages/plugin-rsc/examples/starter/src/framework/entry.rsc.tsx#L42-L47

During development, these API internally relies on dynamic import to load server function module, which allows executing arbitrary module including data url module.

https://github.com/vitejs/vite-plugin-react/blob/c8af971f57f12d0190d7fd8829a429f5e4112f60/packages/plugin-rsc/src/rsc.tsx#L19-L24

Proof of Concept

The example app is avialable in

https://github.com/vitejs/vite-plugin-react/tree/main/packages/plugin-rsc/examples/starter
https://stackblitz.com/edit/github-rubfqp9k?file=poc.js

Reproduction Steps:

Stat development server vite dev
Run a following script node poc.js
See "REMOTE CODE EXECUTION1" and "REMOTE CODE EXECUTION2" in server console

// [poc.js]
const payload = {
  0: ["$F1"],
  1: { id: "data:text/javascript,console.log('REMOTE CODE EXECUTION 1')# " },
};
const fd = new FormData();
for (const key in payload) {
  fd.append(key, JSON.stringify(payload[key]));
}

const serverUrl = process.argv[2] || 'http://localhost:5173/_.rsc';
const response = fetch(serverUrl, {
  method: "POST",
  headers: {
    "x-rsc-action": "data:text/javascript,console.log('REMOTE CODE EXECUTION 2')# ",
  },
  body: fd,
})

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2025-67489

CVE-2025-67489:

9.8

CVSS Score

3.1

-

CVSS Score

Basic Information

Technical Details

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
@vitejs/plugin-rsc	npm	<= 0.5.5	0.5.6

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability lies in the unsafe use of dynamic import() with user-controlled input within the @vitejs/plugin-rsc package, specifically affecting the development server. The analysis of the patch commit fe634b58210d0a4a146a7faae56cd71af3bb9af4 reveals that the core issue is in the anonymous load functions defined inside an initialize function in both packages/plugin-rsc/src/rsc.tsx and packages/plugin-rsc/src/ssr.tsx. These functions are responsible for dynamically loading modules based on an id parameter.

The vulnerability description states that server function APIs like loadServerAction, decodeReply, and decodeAction are the entry points. These APIs internally use the vulnerable load function to resolve and import modules. An attacker could craft a request to the development server where the module id is a malicious data: URL containing arbitrary JavaScript. The import(id) call would then execute this code with Node.js privileges.

The patch mitigates this by introducing a validation mechanism. Before the dynamic import is executed, another import() is performed on a virtual module (virtual:vite-rsc/reference-validation?...). This triggers a new Vite plugin (rsc:reference-validation) that checks if the provided id is a legitimate and known server or client reference. If the id is not found in the list of valid references, the plugin throws an error, preventing the subsequent unsafe import and stopping the attack.

Vulnerable functions

initialize.load

packages/plugin-rsc/src/rsc.tsx

This anonymous `load` function, configured via `setRequireModule`, is called by server function APIs like `decodeAction` and `decodeReply`. It performs a dynamic import using a module `id` that can be controlled by an attacker through HTTP requests. Before the patch, there was no validation of the `id`, allowing a malicious `data:` URL to be imported, leading to remote code execution on the development server.

initialize.load

packages/plugin-rsc/src/ssr.tsx

Similar to the `load` function in `rsc.tsx`, this anonymous function in `ssr.tsx` is used for dynamically loading client-side modules during server-side rendering. It was vulnerable to the same dynamic import attack, where a malicious `id` could lead to code execution. The patch adds a validation step to ensure the `id` corresponds to a known client reference.

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

9.8

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-67489: @vitejs/plugin-rsc Remote Code Execution through unsafe dynamic imports in RSC server function APIs on development server

Summary

Impact

Details

Proof of Concept

CVE-2025-67489:

9.8

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Basic Information

Basic Information

9.8

9.8

CVE-2025-67489: @vitejs/plugin-rsc Remote Code Execution through unsafe dynamic imports in RSC server function APIs on development server

Summary

Impact

Details

Proof of Concept

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI