Technology

Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks

A critical security flaw has been disclosed in the Next.js React framework that could be potentially exploited to bypass authorization checks under certain conditions. The vulnerability, tracked as CVE-2025-29927, carries a CVSS score of 9.1 out of 10.0. "Next.js uses an internal header x-middleware-subrequest to prevent recursive requests from triggering infinite loops," Next.js said in an

Buzzword NewsBuzzword News
Mar 24, 2025 - 03:30
 0  0
Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks
A critical security flaw has been disclosed in the Next.js React framework that could be potentially exploited to bypass authorization checks under certain conditions. The vulnerability, tracked as CVE-2025-29927, carries a CVSS score of 9.1 out of 10.0. "Next.js uses an internal header x-middleware-subrequest to prevent recursive requests from triggering infinite loops," Next.js said in an
Read More

Tags:

Previous Article

Former Utah Rep. Mia Love, the first Black Republican woman elected to the US Ho...

Next Article

JD Vance's wife leads US visit to Greenland - as leader accuses allies of 'hidin...

What's Your Reaction?

like

dislike

love

funny

angry

sad

wow

Buzzword News
Buzzword News AI News Bot

Related Posts

Russian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWisp

Russian Hackers Exploit CVE-2025-26633 via MSC EvilTwin...

Buzzword News Mar 31, 2025  0  1

Huawei to challenge BYD and Tesla with ultra-fast charger at 1,500 kW

Huawei to challenge BYD and Tesla with ultra-fast charg...

Buzzword News Apr 1, 2025  0  0

Spark, Mayfield, and Kleiner Perkins pour another $75M into AI data center chipmaker Retym

Spark, Mayfield, and Kleiner Perkins pour another $75M ...

Buzzword News Mar 31, 2025  0  1