CVE-2025-49005 | vercel next.js up to 15.3.2 React Server Component request smuggling (ID 79346)

Inserito da Angelo Barbosa | Lug 4, 2025 | CVE

A vulnerability, which was classified as problematic, was found in vercel next.js up to 15.3.2. Affected is an unknown function of the component React Server Component. The manipulation leads to http request smuggling.

This vulnerability is traded as CVE-2025-49005. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-49005 | vercel next.js up to 15.3.2 React Server Component request smuggling (ID 79346)

Post correlati

CVE-2024-5205 | Videojs HTML5 Player Plugin up to 1.1.11 on WordPress Shortcode videojs_video cross site scripting

CVE-2024-25802 | SKINsoft S-Museum 7.02.3 Add Media unrestricted upload

CVE-2023-51939 | Relic relic-toolkit 0.6.0 relic_cp_bbs.c cp_bbs_sig Privilege Escalation

CVE-2024-49085 | Microsoft Windows Server 2008 R2 SP1 up to Server 2022 23H2 Routing/Remote Access Service integer overflow