diff --git a/changelog.md b/changelog.md
index 8cf7e39..cba08a0 100644
--- a/changelog.md
+++ b/changelog.md
@@ -10,6 +10,12 @@ Since [ECharts](https://echarts.apache.org/) is the main dependency of this
 application, major version changes in ECharts will also trigger a major version
 change in this application.
 
+## Version 5.0.3 (2023-06-28)
+
+* __[maintenance]__
+Update dependency `semver` to 7.5.3. This fixes a Regular Expression Denial of
+Service vulnerability in `semver` (CVE-2022-25883).
+
 ## Version 5.0.2 (2023-05-17)
 
 * __[maintenance]__
diff --git a/export-server/package-lock.json b/export-server/package-lock.json
index dcd9a33..7950b61 100644
--- a/export-server/package-lock.json
+++ b/export-server/package-lock.json
@@ -1,6 +1,6 @@
 {
   "name": "echarts-node-export-server",
-  "version": "5.0.2",
+  "version": "5.0.3",
   "lockfileVersion": 1,
   "requires": true,
   "dependencies": {
@@ -356,9 +356,9 @@
       "integrity": "sha512-rp3So07KcdmmKbGvgaNxQSJr7bGVSVk5S9Eq1F+ppbRo70+YeaDxkw5Dd8NPN+GD6bjnYm2VuPuCXmpuYvmCXQ=="
     },
     "semver": {
-      "version": "7.5.1",
-      "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.1.tgz",
-      "integrity": "sha512-Wvss5ivl8TMRZXXESstBA4uR5iXgEN/VC5/sOcuXdVLzcdkz4HWetIoRfG5gb5X+ij/G9rw9YoGn3QoQ8OCSpw==",
+      "version": "7.5.3",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.3.tgz",
+      "integrity": "sha512-QBlUtyVk/5EeHbi7X0fw6liDZc7BBmEaSYn01fMU1OUYbf6GPsbTtd8WmnqbI20SeycoHSeiybkE/q1Q+qlThQ==",
       "requires": {
         "lru-cache": "^6.0.0"
       }
diff --git a/export-server/package.json b/export-server/package.json
index dacea0a..1628a97 100644
--- a/export-server/package.json
+++ b/export-server/package.json
@@ -1,6 +1,6 @@
 {
   "name": "echarts-node-export-server",
-  "version": "5.0.2",
+  "version": "5.0.3",
   "description": "ECharts Node.js export server",
   "repository": {
     "url": "https://gitlab.com/striezel/echarts-node-export-server.git",