CVE-2026-44574HIGH 8.1EPSS p29.9%

CVE-2026-44574CVE-2026-44574

Description

Next.js is a React framework for building full-stack web applications. From 15.4.0 to before 15.5.16 and 16.2.5, applications that rely on middleware to protect dynamic routes can be vulnerable to authorization bypass. In affected deployments, specially crafted query parameters can alter the dynamic route value seen by the page while leaving the visible path unchanged, which can allow protected content to be rendered without passing the expected middleware check. This vulnerability is fixed in 15.5.16 and 16.2.5.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS0.38% probability of exploitation · percentile 29.9% · 2026-06-19T12:03:05Z
Published2026-05-13
Last modified2026-05-14

Underlying weaknesses· 1

CWE-288

References

  1. https://github.com/vercel/next.js/security/advisories/GHSA-492v-c6pp-mqqv

1

TypeTargetConfidenceTier
WeaknessAuthentication Bypass Using an Alternate Path or Channelcwe-2880%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-29927
CVE
CVE-2026-44578
CVE
CVE-2025-57822
CVE
CVE-2025-64762
CVE
CVE-2026-42353
CVE
CVE-2026-33244
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.