top of page
perceptive_background_267k.jpg

React2Shell: Technical Deep-Dive & In-the-Wild Exploitation of CVE-2025-55182

Published:

8 december 2025 om 17:18:38

Alert date:

8 december 2025 om 18:00:42

Source:

wiz.io

Click to open the original link from this advisory

Technical analysis of CVE-2025-55182, dubbed React2Shell, affecting Next.js applications. The vulnerability is being actively exploited in the wild with sophisticated attack techniques including credential harvesting and cloud backdoor deployment. Wiz security researchers provide detailed breakdown of exploit mechanics and document real-world attack campaigns targeting this vulnerability.

Technical details

Mitigation steps:

Affected products:

Next.js

Related links:

https://www.wiz.io/blog/nextjs-cve-2025-55182-react2shell-deep-dive

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page