Home / Security updates / React2Shell (CVE-2025-55182)
React2Shell (CVE-2025-55182)
Security updates detail rendered from /security-updates/upd_e1cea64d42fc3853.
Overview
| ID | upd_e1cea64d42fc3853 |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | MacStadium |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_e1cea64d42fc3853 |
| providerId | safebase |
| organizationId | org_9307cf386896ed72 |
| trustCenterId | tc_8ff7f0c82ecb7635 |
| title | React2Shell (CVE-2025-55182) |
| message | MacStadium received initial intelligence of a proof-of-concept on this threat Thursday December 4th at 12:00 noon ET and began conducting internal vulnerability scans and threat hunting activities in coordination with our SOC team. No unpatched systems or indicators of compromise were detected in any of our infrastructure environments at that time. Internal and external vulnerability scans were executed again over the weekend and confirmed that no vulnerable instances of Next.js exist within MacStadium’s infrastructure environment. MacStadium's devops team has confirmed that there were no vulnerable instances of Next.js within any of our software development projects. As part of our CI/CD processes, we have branch protection rules that utilize Renovate to update libraries and Trivey to identify vulnerabilities in the enforcement of our zero-cve policy for all software releases. Our GRC team has also been engaging with our third-party critical vendors and sub processors to inquire abo |
| url | - |
| publishedAt | 2025-12-08 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "vulnerabilities"
} |
| company | {
"id": "org_9307cf386896ed72",
"name": "MacStadium",
"domains": [
"trust.macstadium.com",
"macstadium.com"
]
} |
| trust_center | {
"id": "tc_8ff7f0c82ecb7635",
"name": "MacStadium",
"url": "https://trust.macstadium.com",
"host": "trust.macstadium.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_e1cea64d42fc3853",
"company": "/v1/companies/org_9307cf386896ed72",
"trust_center": "/v1/trust-centers/tc_8ff7f0c82ecb7635",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_e1cea64d42fc3853JSON