CVE-2025-55182

exploited in the wild
CVSS
10.0
Reports
14
First seen
Dec 4
Last seen
May 29
Affected product

React2Shell

Associated actors

Recent reports

High

Container security analysis: vulnerabilities, misconfigurations, and risks in Docker images

Kaspersky Securelist
High

AI Threat Landscape Digest: March-April 2026 — Criminal AI Deployment and Vulnerability Acceleration

Check Point Research
Critical

EtherRat and TukTuk Malware Lead to Gentlemen Ransomware Deployment

The DFIR Report
High

PCPJack | Cloud Worm Evicts TeamPCP and Steals Credentials at Scale

SentinelOne Labs
High

CERT-EU Cyber Brief April 2026 – Espionage, Supply-Chain Attacks, and Critical Infrastructure Threats

CERT-EU Threat Intel
High

SHADOW-EARTH-053: China-Aligned Cyberespionage Campaign Against Asian Government and Defense Sectors

Trend Micro Research
Critical

Threat Intelligence Report – 27 April: Vercel, Bitwarden, UK Biobank breaches; critical CVEs and ransomware

Check Point Research
Critical

Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvesting Campaign

The DFIR Report
High

Untangling a Linux Incident With an OpenAI Twist (Part 2)

Huntress Blog
High

Multiple Threat Actors Rapidly Exploit React2Shell: Case Study of Active Compromise

JPCERT/CC Blog
High

Cyber Brief December 2025: Espionage, Ransomware, and Infrastructure Attacks Across Europe and Beyond

CERT-EU Threat Intel
Critical

PeerBlight Linux Backdoor and Associated Malware Exploiting React2Shell CVE-2025-55182

Huntress Blog
Critical

Critical RCE Vulnerability in React Server Components (CVE-2025-55182)

CERT-EU Advisories
High

Multiple Vulnerabilities in React Server Components and Next.js (CVE-2025-55182, CVE-2025-66478)

GovCERT.HK

This page shows data on a 7-day delay. Free accounts get the full delayed feed; real-time reports, indicators, and the API start at $29/mo.