Multiple Threat Actors Rapidly Exploit React2Shell: A Case Study of Active Compromise - JPCERT/CC Eyes

blogs.jpcert.or.jp

Multiple Threat Actors Rapidly Exploit React2Shell: A Case Study of Active Compromise - JPCERT/CC Eyes

blogs.jpcert.or.jp

digicatM to

blueteamsecEnglish · 7 days ago

On December 3, 2025 (local time), a vulnerability allowing unauthenticated remote code execution in React Server Components (RSC) (CVE-2025-55182) was disclosed. JPCERT/CC has received multiple incident reports related to this attack. Among them, there was a case in which this...

You must log in or # to comment.

Chat

blueteamsec

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !blueteamsec@infosec.pub

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

16 users / day
153 users / week
326 users / month
952 users / 6 months
227 local subscribers
633 subscribers
2.44K Posts
201 Comments
Modlog

mods:
digicat