Chinese Hackers Exploit Critical React RCE Flaw Hours After Disclosure
Chinese hackers, linked to state-sponsored groups like Earth Lamia and Jackpot Panda, exploited the critical React2Shell RCE vulnerability (CVE-2025-55182) in React Server Components mere hours after its December 3, 2025 disclosure. This CVSS 10.0 flaw affects Next.js, leading to breaches in 30 organizations and risking 77,000 exposed IPs. Urgent patching and monitoring are essential to […]
Read More