React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

The U.S. Cybersecurity and Infrastructure Security Agency CISA has urged federal agencies to patch the recent React2Shell vulnerability by December 12, 2025, amid reports of widespread exploitation. The critical vulnerability, tracked as CVE-2025-55182 CVSS score: 10.0, affects the React Server...

CVE-2025-59824

The CVE CVE-2025-59824 affects Omni’s WireGuard-based SideroLink used to connect Omni to Talos machines. The issue: the WireGuard interface validates that the source IP matches the Talos peer IPv6 address but does not validate the destination address, meaning a malicious workload on the same Kube...