CVE-2026-44575 | vercel next.js up to 15.5.15/16.2.4 authentication bypass

Inserito da Angelo Barbosa | Mag 13, 2026 | CVE

A vulnerability was found in vercel next.js up to 15.5.15/16.2.4. It has been classified as critical. The affected element is an unknown function. This manipulation causes authentication bypass using alternate channel.

This vulnerability is registered as CVE-2026-44575. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is recommended.

CVE-2026-44575 | vercel next.js up to 15.5.15/16.2.4 authentication bypass

Post correlati

CVE-2026-28226 | phishingclub Phishing Club up to 1.30.1 Endpoint RemapOrderBy sortBy sql injection (GHSA-4r69-4qff-ccj3)

CVE-2024-26908 | Linux Kernel up to 6.7.10 xen smp.c kasprintf null pointer dereference

CVE-2024-2730 | Mautic up to 4.4.9 Landing Page direct request

CVE-2023-39329 | OpenJPEG tcd.c opj_t1_decode_cblks resource consumption