Cyber Security Shots

React2Shell [CVE-2025-55182 ]

• China-nexus cyber threat groups rapidly exploit React2Shell vulnerability (CVE-2025-55182)
  • Affected components: React Server components in React 19.x and Next.js 15.x/16.x with App Router
  • CVSS Score:10
  • Attack vector: Unauthenticated remote code execution
  • Remediation
    • Upgrade RSC Components should update to the latest patched versions 19.0.1, 19.1.2, and 19.2.1 and Next.js 15-16 with App Router should update to a patched version
    • Using Custom WAF, I would recommend checking the link

To tie the knots Dec 5th CloudFlare outage was due to the implementation of the mitigation of the CVE-2025-55182 [Link]

• MITRE ATT&CK Evaluations Enterprise Round 7 (ER7), released in December 2025, tested security products against emulated attacks mimicking Scattered Spider (eCrime group with cloud-centric tactics) and Mustang Panda (Chinese state-sponsored espionage) [Link]

AI Security

• Prompt Injection via MCP sampling [Link]
• OWASP Top 10 for Agentic Applications 2026 was released on Dec 9th [Link]