CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2025-29927

CVSS 9.1v3.1pub. 2025-03-21upd. 2025-09-10

Next.js is a React framework for building full-stack web applications. Starting in version 1.11.4 and prior to versions 12.3.5, 13.5.9, 14.2.25, and 15.2.3, it is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware. If patching to a safe version is infeasible, it is recommend that you prevent external user requests which contain the x-middleware-subrequest header from reaching your Next.js application. This vulnerability is fixed in 12.3.5, 13.5.9, 14.2.25, and 15.2.3.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
  • Vercel Next.js

    APP
    Vercel
    11.1.4 – 12.3.5 (bez)13.0.0 – 13.5.9 (bez)14.0.0 – 14.2.25 (bez)15.0.0 – 15.2.3 (bez)
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2025-55182CRITICAL10.0⚠ KEVPL ✓ten sam produkt

RCE bez uwierzytelnienia w React Server Components (deserializacja)

CVE-2026-44573HIGH7.5ten sam produkt

Next.js is a React framework for building full-stack web applications. From 12.2.0 to before 15.5.16 and 16.2....

CVE-2026-44575HIGH7.5ten sam produkt

Next.js is a React framework for building full-stack web applications. From 15.2.0 to before 15.5.16 and 16.2....

CVE-2026-44574HIGH8.1ten sam produkt

Next.js is a React framework for building full-stack web applications. From 15.4.0 to before 15.5.16 and 16.2....

CVE-2026-44578HIGH8.6ten sam produkt

Next.js is a React framework for building full-stack web applications. From 13.4.13 to before 15.5.16 and 16.2...