Data Source: Suricata | Detection.FYI

React2Shell Network Security Alert

Dec 19, 2025 · Domain: Network Domain: Application Domain: Web Use Case: Threat Detection Use Case: Vulnerability Tactic: Initial Access Tactic: Execution Data Source: PAN-OS Data Source: Fortinet Data Source: Suricata Data Source: Cisco FTD Resources: Investigation Guide ·
Share on:

This rule identifies network security alerts related to CVE-2025-55182 exploitation attempts from different network security integrations. CVE-2025-55182 is a critical remote code execution vulnerability in React Server Components (RSC) Flight protocol. The vulnerability allows attackers to execute arbitrary code on the server by sending specially crafted deserialization payloads that exploit prototype chain traversal to access the Function constructor.

Read More
Suricata and Elastic Defend Network Correlation

Dec 19, 2025 · Domain: Endpoint Domain: Network OS: Linux OS: Windows OS: macOS Use Case: Threat Detection Tactic: Command and Control Data Source: Elastic Defend Data Source: Suricata Resources: Investigation Guide ·
Share on:

This detection correlates Suricata alerts with Elastic Defend network events to identify the source process performing the network activity.

Read More