9 December 2025 – Tokyo – We would like to inform our customers regarding the React vulnerability commonly referred to as “React2Shell” (CVE-2025-55182), which has recently been reported by various media outlets and security organizations.
We have conducted a thorough internal assessment to evaluate the impact of this vulnerability on our products and services.
Based on our investigation, we confirm that this vulnerability does not affect any of our products or services.
Details of Assessment Results
- NtInsight
NtInsight uses a “Fat Client” architecture. It runs as a desktop application and does not use the web server technologies required for this vulnerability to exist. - NtSaaS
NtSaaS is a Single Page Application (SPA) that uses Client-Side Rendering (CSR). We have verified that we do not use the specific vulnerable versions of the React software library that contain the flaw in React Server Components.
We will continue to monitor relevant security information and take appropriate measures as necessary to ensure the safety and reliability of our products and services.
Thank you for your continued trust and support.
Reference
Critical Security Vulnerability in React Server Components – React
Numerical Technologies is a financial risk management software company and consulting firm that specializes in high-performance computing (HPC), parallel Monte Carlo simulation, and financial modeling. Since 1998, we have been helping some of the largest banks and insurance companies globally to quantify risk, identify opportunities, and meet economic and regulatory capital requirements. Numerical Technologies holds office in Singapore and Tokyo.