top of page

Suspicious Activity?

Get Free MDR Now

Home
About
Our Story
Mission
Our Customers
Top 250 MSSP
Careers
Our Story
Mission
Our Customers
Top 250 MSSP
Careers
Why MDR
MSS vs MDR
PAGO MDR Center
Free Threat Cleaning
MSS vs MDR
PAGO MDR Center
Free Threat Cleaning
DeepACT Platform
DeepACT Overview
Technology Stack
Customer Reviews
DeepACT Overview
Technology Stack
Customer Reviews
Insights
Technology Blog
News & Press
2026 Threat Intelligence Report
Special Report | Use Case Insights
2025 PAGO Security Summit
2025 RSA Conference
2025 Gartner SRM Summit
Technology Blog
News & Press
2026 Threat Intelligence Report
Special Report | Use Case Insights
2025 PAGO Security Summit
2025 RSA Conference
2025 Gartner SRM Summit
Contact Us

Full View
Events
Technology Blog
Announcement
Newsroom
Press Releases
Inside PAGO
Sessions & Webinars
Security Reports
Threat Intelligence

Threat Intelligence

Metro4Shell and the Changing Risk Profile of Development Environments

A critical Remote Code Execution vulnerability has been discovered in the Metro Development Server used in React Native development environments, and recent attack activity has been observed exploiting this flaw to distribute malicious payloads. The vulnerability, tracked as CVE-2025-11953 and referred to as Metro4Shell, originates from an OS Command Injection issue in the /open-url endpoint, which is provided for development convenience. This issue is particularly noteworthy

Threat Intelligence