From React to Remote Code – Protecting Against the Critical React2Shell RCE Exposure

A critical unauthenticated remote code execution vulnerability dubbed React2Shell (CVE-2025-55182) in React Server Components and Next.js allows attackers to execute arbitrary code via unsafe deserialization of RSC Flight payloads; exploitation is highly reliable (near 100%), affects default deployments, and has been observed being weaponized by China-nexus threat groups, while vendors have released patches and SentinelOne offers detection and remediation guidance.