React2Shell flaw (CVE-2025-55182) exploited for remote code execution

React2Shell flaw (CVE-2025-55182) exploited for remote code execution

The availability of exploit code will likely lead to more widespread opportunistic attacks

Mindi McDowell

Go to sophos

Posted

December 12, 2025

in

featured, React2Shell, sophos, Threat Research, Vulnerability

by

leeanne

Tags: