TI Mindmap HUB
Threat Intelligence Report

Exploitation of Critical Vulnerability in React Server Components (Updated December 8)

📅 December 9, 2025 📰 unit42.paloaltonetworks.com 🔍 2 CVE(s) referenced

A critical remote code execution vulnerability in React Server Components is being rapidly exploited in the wild, enabling unauthenticated attackers to seize control of servers and deploy advanced malware, webshells, and credential theft tools—underscoring an urgent need for immediate patching and heightened vigilance.

vendor
CVE-2025-55182, CVE-2025-66478

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap
🎯 IOC Extraction
⚔️ MITRE ATT&CK TTPs
📦 STIX 2.1 Bundle