AAKL (@AAKL@infosec.exchange)
CISA has updated the KEV catalogue.
CVE-2025-55182: Meta React Server Components Remote Code Execution Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-55182
From yesterday:
CISA Launches New Platform to Strengthen Industry Engagement and Collaboration https://www.cisa.gov/news-events/news/cisa-launches-new-platform-strengthen-industry-engagement-and-collaboration #CISA #infosec #Meta #React #vulnerability
Show Original Post
AAKL (@AAKL@infosec.exchange)
Broadcom has two advisories today, one critical, one medium. You'll need a login for details https://support.broadcom.com/web/ecx/security-advisory
Broadcom Mainframe Software Security Advisory for Critical React RCE Vulnerability CVE-2025-55182, and ACF2 for z/OS 16.0 Vulnerability #infosec #Broadcom ##React
Show Original Post
AAKL (@AAKL@infosec.exchange)
Cloudflare appears to be back after an outage that brought down many websites.
Clouflate status: https://www.cloudflarestatus.com/
USA Today: Cloudflare outage resolved after impacting Fortnite, LinkedIn, X, more https://www.usatoday.com/story/tech/2025/12/05/cloudflare-down-outage/87619403007/ @USAToday
Security Week: Cloudflare Outage Caused by React2Shell Mitigations https://www.securityweek.com/cloudflare-outage-caused-by-react2shell-mitigations/ @SecurityWeek #infosec #React #Cloudflare
Show Original Post
tekkie (@tekkie@mstdn.social)
#Cloudflare has deployed new rules across its network, with the default action set to Block for the traffic aiming to abuse the #React vulnerability. Benefits of using the out-of-the-box service like Cloudflare. https://blog.cloudflare.com/waf-rules-react-vulnerability/ #InfoSec
Show Original Post
CuratedHackerNews (@CuratedHackerNews@mastodon.social)
Write ReactJS in Rust
https://github.com/hyper-forge/brahma-react
Show Original Post
AAKL (@AAKL@infosec.exchange)
The source is Lachlan Davidson on GitHub: https://github.com/lachlan2k
Infosecurity-Magazine: React.js Hit by Maximum-Severity 'React2Shell' Vulnerability https://www.infosecurity-magazine.com/news/reactjs-hit-by-react2shell/ #React #infosec #JavaScript
Show Original Post
AAKL (@AAKL@infosec.exchange)
AWS, from yesterday: China-nexus cyber threat groups rapidly exploit React2Shell vulnerability (CVE-2025-55182) https://aws.amazon.com/blogs/security/china-nexus-cyber-threat-groups-rapidly-exploit-react2shell-vulnerability-cve-2025-55182/
More:
The Hacker News: Chinese Threat Actors Have Started Exploiting the Newly Disclosed React2Shell Vulnerability https://thehackernews.com/2025/12/chinese-hackers-have-started-exploiting.html @thehackernews #infosec #React
Show Original Post
rawchili (@rawchili@channels.im)
BOOM! 💥 CBJ Bench REACTS to Adam Fantilli’s Game-Tying Goal! 😄 https://www.rawchili.com/4713302/ #AdamFantilli #BenchReaction #BlueJackets #BlueJacketsBenchReaction #cbj #ColumbusBlueJackets #ColumbusBlueJackets #espn #EspnNhl #hockey #IsacLundestrom #KentJohnson #KirillMarchenko #MilesWood #NationalHockeyLeague #NationwideArena #NHL #NHLBenchReaction #react #reacting #reaction
Show Original Post
RedPacketSecurity (@RedPacketSecurity@mastodon.social)
CVE Alert: CVE-2025-55182 - Meta - react-server-dom-webpack - https://www.redpacketsecurity.com/cve-alert-cve-2025-55182-meta-react-server-dom-webpack/
#OSINT #ThreatIntel #CyberSecurity #cve-2025-55182 #meta #react-server-dom-webpack
Show Original Post
sylvie (@sylvie@gabriel.havfruefestning.com)
Happy ~~Fortinet~~ #React Patch Weekend for all who celebrate 🍻
Show Original Post
scottwilson (@scottwilson@infosec.exchange)
Thanks again to Kevin, for a clear-eyed piece sharing solid advice.
#React #ButReactSmart
https://cyberplace.social/@GossiTheDog/115666698943952220
Show Original Post
PrivacyDigest (@PrivacyDigest@mas.to)
Maximum-severity #vulnerability threatens 6% of all #websites
#Security defenders are girding themselves in response to the disclosure of a maximum-severity vulnerability disclosed Wednesday in #ReactServer , an open source package that’s widely used by websites and in cloud environments. The vulnerability is easy to #exploit and allows #hackers to execute #malicious code on #servers that run it.
#react
Show Original Post