Critical React2Shell Vulnerability Under Active Exploitation by Chinese Threat Actors

Recorded Future describes CVE-2025-55182 (React2Shell), a critical remote-code-execution vulnerability in React Server Components and related frameworks that has publicly available PoCs and is reported to be actively exploited (AWS and Datadog reporting scans and exploitation attempts); the report lists affected versions, mitigation patches, recommended scanning tools, and IP indicators linked to suspected Chinese threat actors while urging immediate patching and network defenses.