Search Results: RCE

The CVE‑2025‑55182 “React2Shell” flaw in React Server Components unlocked unauthenticated remote code execution across thousands of Next.js sites. Within days, China‑nexus espionage groups, financial miners, and other threat actors deployed a suite of backdoors—MINOCAT, SNOWLIGHT, COMPOOD, HISONIC, and ANGRYREBEL.LINUX—turning the web framework into a launchpad for espionage and cryptocurrency mining.

A critical remote code execution vulnerability has been discovered in LibXYZ, a widely used JavaScript library, putting millions of applications at risk. The vulnerability, now patched, requires immediate action from developers and organizations worldwide.

A severe remote code execution vulnerability in the ubiquitous 'libfoo' logging library allows attackers to compromise systems through crafted log messages, triggering widespread emergency patches across the Java ecosystem.

WatchGuard has patched a severe remote code execution vulnerability (CVE-2025-9242) affecting Firebox firewalls using IKEv2 VPN configurations. Exploitation could let attackers hijack network appliances—even if vulnerable settings were previously deleted. The disclosure follows a pattern of firewall-targeting attacks by ransomware groups.

Threat actors are mass-exploiting a critical unauthenticated file upload flaw in WordPress's 'Alone' theme to execute remote code and hijack websites. Wordfence has blocked 120,000+ attacks, noting exploitation began before public disclosure. Nonprofits using this popular theme must update immediately to prevent complete site compromise.

Security researcher Bobby Gould has released a complete exploit chain for CVE-2025-20281, a critical unauthenticated RCE vulnerability in Cisco ISE actively exploited in the wild. The demonstration includes container escape techniques, escalating threats for unpatched networks managing identity and access controls.