Hello, this is Tmax Tibero Co., Ltd.

We are writing to inform you regarding the potential impact of the recently disclosed Remote Code Execution (RCE) vulnerabilities (CVE-2025-55182, CVE-2025-66478) in React Server Components (RSC) environments on our services.

1. Vulnerability Overview

• Issue: Remote Code Execution (RCE) vulnerability in React Server Components (RSC) environments allowing pre-authentication exploitation.

• CVE IDs: CVE-2025-55182, CVE-2025-66478

• Affected Scope: Specific environments utilizing the affected components and features.

2. Inspection Results

• Impact Assessment: Unaffected (Safe) Immediately following the disclosure, we conducted an urgent inspection of our internal systems and overall services.

• Result Details: The inspection confirmed that Tmax Tibero does not utilize the vulnerable React Server Components (RSC). Consequently, all currently operating services are confirmed to be safe from these vulnerabilities.

3. Future Response

• Current Status: We are monitoring relevant security notices and patch trends in real-time and are continuously conducting internal security checks as a preventive measure.

• Customer Action Required: No separate action is required from our customers at this time.

• Further Updates: Should any additional risks be identified, we will notify you promptly.

Tmax Tibero remains committed to safeguarding your critical data assets and providing a reliable environment.

Thank you.