Mobile App Development Archives - Proactive Insights and Support For Open-Source Applications

Selected category

Communication
- Communication
Communication and Collaboration
- Communication
Specialized Software
- Educational
- Graphic Design
Business and Enterprise Solutions
Project and Agile Management
- Project Management
- IT Business Management
Infrastructure and Network
DevOps
Data Management and Analytics

24 Mar 2025 DevOps

Next.js: Authorization Bypass via Middleware

In Next.js versions prior to 14.2.25 and 15.2.3 a critical severity vulnerability CVE-2025-29927 was detected. This vulnerability allows attackers to bypass authorization checks within a Next.js application if the authorization check occurs in middleware. To address this issue, users should upgrade Next.js to versions 14.2.25, 15.2.3, 15.3.0-canary.12 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2025-29927.