THREATOPS
THREAT OPSThreat News › Multiple Threat Actors Rapidly Exploit React2Shell: A Case Study of Active Compromise

Multiple Threat Actors Rapidly Exploit React2Shell: A Case Study of Active Compromise

lowjpcert_blogPublished 2026-02-13

<p>On December 3, 2025 (local time), a vulnerability allowing unauthenticated remote code execution in React Server Components (RSC) (<a href="https://www.jpcert.or.jp/newsflash/2025120501.html" target="_blank">CVE-2025-55182</a>) was disclosed. JPCERT/CC has received multiple incident reports related to this attack. Among them, there was a case in which this vulnerability was exploited by multipl

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://blogs.jpcert.or.jp/en/2026/02/multiple-threat-actors-rapidly-exploit-react2shell-a-case-study-of-active-compromise.html