× EU ICT Risk Newsroom DORA News On the Horizon ΑΙ Cybersec Space Cyber Alerts GDPR News EU CERT Advisories ICT Governance ESA/NCAs Contact
Switch to Greek 🔍

React2Shell Exploitation: Global Attacks Force Emergency Mitigation by CISA

Newsroom - 12 December 2025 - 10:41

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged federal agencies to patch the recent React2Shell vulnerability by December 12, 2025. This directive comes amid reports of widespread exploitation, highlighting the urgency of the situation. The critical vulnerability, tracked as CVE-2025-55182 (CVSS score: 10.0), affects the React Server Components (RSC) Flight protocol.

React2Shell Exploitation: Global Attacks Force Emergency Mitigation by CISA
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged federal agencies to patch the recent React2Shell vulnerability by December 12, 2025. This directive comes amid reports of widespread exploitation, highlighting the urgency of the situation. The critical vulnerability, tracked as CVE-2025-55182 (CVSS score: 10.0), affects the React Server Components (RSC) Flight protocol. The underlying cause of the issue is an unsafe deserialization, posing a significant security risk.
React2Shell CISA vulnerability exploitation

Subscribe for EU DORA and Banking ICT Risk news and insights