Next.js patches SSRF and authorization bypass flaws in self-hosted apps
Vercel issued a coordinated Next.js security release covering 13 advisories, including a high-severity server-side request forgery flaw tracked as CVE-2026-44578 / GHSA-c4j6-fc7j-m34r. The bug affects self-hosted applications using the built-in Node.js server, where crafted WebSocket upgrade requests can be abused to proxy traffic to arbitrary internal or external destinations. That exposure can let attackers reach cloud metadata endpoints, internal admin interfaces, and other internal services, potentially stealing cloud credentials, API keys, and deployment secrets. Vercel-hosted deployments were reported as unaffected because they do not use the vulnerable WebSocket routing path.
The release also fixed an App Router authorization bypass, GHSA-267c-6grr-h53f, in which specially crafted .rsc and segment-prefetch URLs could evade middleware or proxy-based access controls and expose protected content. A public GitHub repository has since collected proof-of-concept material for 12 issues fixed in next 16.2.5, including SSRF, middleware bypass, cache poisoning, XSS, and denial-of-service bugs, increasing the urgency for defenders to patch. Vercel said patching is the only complete mitigation and advised upgrading to Next.js 15.5.18 or 16.2.6, with immediate interim steps including blocking unnecessary WebSocket upgrades, restricting origin-server egress to metadata and internal networks, and enforcing authorization checks in route or page logic rather than relying solely on middleware.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
8 events from the most recent confirmed update back to the earliest known activity.
Reporting highlights SSRF risk to cloud credentials and internal services
Public reporting summarized CVE-2026-44578 as a high-severity SSRF vulnerability that could expose cloud metadata, API keys, deployment secrets, and internal admin interfaces in self-hosted Next.js deployments. The coverage reiterated fixed versions and recommended mitigations such as blocking unnecessary WebSocket upgrades and restricting origin egress.
Public PoC repository appears for Next.js 16.2.5-fixed vulnerabilities
A GitHub repository was published collecting reverse-engineered proof-of-concept material for 12 security issues fixed in Next.js 16.2.5. The repository includes exploit scripts, patch diffs, vulnerable code excerpts, and reproduction material for defensive research and regression testing.
Next.js releases fixes for May 2026 security advisories
As part of its May 2026 security release, Next.js shipped coordinated fixes for 13 advisories covering issues including denial of service, authorization bypasses, SSRF, cache poisoning, and XSS. The release notes direct users to upgrade Next.js and related React packages, emphasizing that patching is the only complete mitigation.
Next.js issues follow-up advisory for incomplete App Router bypass fix
Vercel published advisory GHSA-26hh-7cqf-hhc6 describing an incomplete-fix follow-up for middleware or proxy bypass in App Router applications via segment-prefetch routes. The advisory indicates the originally disclosed bypass issue required additional remediation beyond the initial fix.
Next.js discloses Pages Router i18n middleware bypass
Vercel published advisory GHSA-36qx-fr4f-26g5 for an authorization bypass affecting Pages Router applications with i18n enabled that rely on middleware or proxy-based access controls. Locale-less /_next/data/<buildId>/<page>.json requests could bypass middleware and expose protected server-side rendered JSON, with fixes released in 15.5.16 and 16.2.5.
Next.js discloses dynamic route parameter middleware bypass
Vercel published advisory GHSA-492v-c6pp-mqqv for an authorization bypass affecting Next.js applications that use middleware to protect dynamic routes. Specially crafted query parameters could alter the dynamic route value processed by the page while leaving the visible path unchanged, and the issue was fixed in versions 15.5.16 and 16.2.5.
Next.js discloses App Router middleware bypass vulnerability
Vercel published advisory GHSA-267c-6grr-h53f covering an authorization bypass in App Router applications that rely on middleware or proxy-based checks. Crafted .rsc and segment-prefetch URLs could bypass intended middleware protections in affected 15.x and 16.x releases.
Next.js discloses SSRF flaw in WebSocket upgrade handling
Vercel published advisory GHSA-c4j6-fc7j-m34r for CVE-2026-44578, describing an SSRF issue in self-hosted Next.js applications using the built-in Node.js server. The flaw affects versions 13.4.13 through before 15.5.16 and 16.0.0 through before 16.2.5, while Vercel-hosted deployments are stated to be unaffected.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
8 references tracked. Mallory keeps watching after this page renders.
Critical Next.js Vulnerability Exposes Cloud Credentials, API keys, and Admin Panels
cybersecuritynews.com
Open sourceGitHub - dwisiswant0/next-16.2.4-pocs: Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572) · GitHub
github.com
Open sourceMiddleware / Proxy bypass in App Router applications via segment-prefetch routes - Incomplete Fix Follow-Up · Advisory · vercel/next.js · GitHub
github.com
Open sourceNext.js May 2026 security release - Vercel
vercel.com
Open sourceServer-side request forgery in applications using WebSocket upgrades · Advisory · vercel/next.js · GitHub
github.com
Open sourceMiddleware / Proxy bypass in Pages Router applications using i18n · Advisory · vercel/next.js · GitHub
github.com
Open sourceMiddleware / Proxy bypass through dynamic route parameter injection · Advisory · vercel/next.js · GitHub
github.com
Open sourceMiddleware / Proxy bypass in App Router applications via segment-prefetch routes · Advisory · vercel/next.js · GitHub
github.com
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
Next.js Patches App Router Flaws as Middleware Bypass PoCs Spread
Vercel has released a broad set of security fixes for **Next.js** and related **React Server Components**, addressing more than a dozen vulnerabilities affecting App Router deployments across versions 13.x through 16.x and React Server Components 19.x. The disclosures include denial of service, server-side request forgery, cross-site scripting, cache poisoning, and multiple middleware authorization bypass conditions. Among the most serious issues is `CVE-2026-23870` (`GHSA-8h8q-6873-q5fj`), a high-severity denial-of-service flaw in React Flight deserialization that can be triggered through crafted requests to App Router Server Function endpoints, causing excessive CPU consumption; fixes were issued in Next.js `15.5.16` and `16.2.5`. Vercel also disclosed `CVE-2026-44578`, a high-severity SSRF issue in self-hosted Node.js deployments via crafted WebSocket upgrade requests.
May 25, 2026
Critical React Server Components Flaws Expose Next.js App Router Deployments
Next.js disclosed a **critical remote code execution** vulnerability affecting applications that use the **App Router**, tracing the issue to the upstream React Server Components protocol as `CVE-2025-55182` and the downstream Next.js impact as `CVE-2025-66478`. The flaw carries a **CVSS 10.0** rating and can be triggered by attacker-controlled requests in unpatched environments, with maintainers warning that **no workaround exists**. Affected releases include multiple `15.x` and `16.x` branches and `14.3.0-canary.77` and later canary builds, while `13.x`, stable `14.x`, **Pages Router** applications, and the **Edge Runtime** were reported as unaffected. Next.js issued patched releases, published the `fix-react2shell-next` npm remediation tool, and advised organizations whose applications were online and unpatched at the disclosed cutoff to **rotate secrets after patching**. The company later reported two additional upstream React Server Components issues with downstream impact on Next.js App Router deployments: `CVE-2025-55184`, a **high-severity denial-of-service** flaw that can hang the server process through a crafted HTTP request, and `CVE-2025-55183`, a **medium-severity source code exposure** bug that can cause a Server Function to return compiled source code from other Server Functions. Next.js said neither new issue enables remote code execution and that the earlier React2Shell mitigation remains effective, but it also acknowledged that the initial fix for `CVE-2025-55184` was incomplete and was superseded by `CVE-2025-67779`, forcing some users to upgrade again. The affected range spans App Router deployments from `13.3` across several `14.x`, `15.x`, and `16.x` release lines, and the vendor again said **Pages Router** applications are not affected and urged immediate upgrades to the latest patched versions.
Mar 31, 2026
Critical Unauthenticated RCE Vulnerabilities in React Server Components and Next.js
A critical unauthenticated remote code execution (RCE) vulnerability, tracked as CVE-2025-55182, has been discovered in React Server Components, affecting core React packages (`react-server-dom-webpack`, `react-server-dom-parcel`, and `react-server-dom-turbopack`) in versions 19.0, 19.1.0, 19.1.1, and 19.2.0. The flaw arises from unsafe deserialization of payloads sent to React Server Function endpoints, allowing attackers to execute arbitrary code on the server without authentication. This vulnerability also impacts frameworks and bundlers that integrate React Server Components, including Next.js (assigned CVE-2025-66478), Vite, Parcel, React Router, RedwoodSDK, and Waku. Even default configurations and newly generated Next.js applications are vulnerable, and exploitation requires only a crafted HTTP request, with no developer error or special setup needed. Immediate patching is strongly advised, as the vulnerability is rated CVSS 10.0 (critical) and has been shown to be highly reliable in exploitation tests. Patched versions are available for React (19.0.1, 19.1.2, 19.2.1) and Next.js (15.0.5, 15.1.9, 15.2.6, 15.3.6, 15.4.8, 15.5.7, 16.0.7), and users are urged to upgrade all affected packages and dependencies. Some hosting providers, such as Vercel, have implemented temporary platform-level mitigations, but these are not a substitute for patching. Security researchers estimate that up to 39% of cloud environments may contain vulnerable instances, underscoring the urgency of remediation across the React and Next.js ecosystem.
Mar 21, 2026