Description

Next.js is a React framework for building full-stack web applications. Starting in version 1.11.4 and prior to versions 12.3.5, 13.5.9, 14.2.25, and 15.2.3, it is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware. If patching to a safe version is infeasible, it is recommend that you prevent external user requests which contain the x-middleware-subrequest header from reaching your Next.js application. This vulnerability is fixed in 12.3.5, 13.5.9, 14.2.25, and 15.2.3.

INFO

Published Date :

2025-03-21T14:34:49.570Z

Last Modified :

2025-04-08T15:17:05.315Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-29927 vulnerability.

Vendors Products
Vercel
  • Next.js
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-29927.

URL Resource
http://www.openwall.com/lists/oss-security/2025/03/23/3 cve-icon
http://www.openwall.com/lists/oss-security/2025/03/23/4 cve-icon
https://github.com/vercel/next.js/commit/52a078da3884efe6501613c7834a3d02a91676d2 cve-icon cve-icon
https://github.com/vercel/next.js/commit/5fd3ae8f8542677c6294f32d18022731eab6fe48 cve-icon cve-icon
https://github.com/vercel/next.js/releases/tag/v12.3.5 cve-icon cve-icon
https://github.com/vercel/next.js/releases/tag/v13.5.9 cve-icon cve-icon
https://github.com/vercel/next.js/security/advisories/GHSA-f82v-jwr5-mffw cve-icon cve-icon cve-icon
https://jfrog.com/blog/cve-2025-29927-next-js-authorization-bypass/ cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-29927 cve-icon
https://security.netapp.com/advisory/ntap-20250328-0002/ cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-29927 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact