Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-f82v-jwr5-mffw

GitHub Security Advisory

Authorization Bypass in Next.js Middleware

✓ GitHub Reviewed CRITICAL Has CVE
View on GitHub

Advisory Details

# Impact
It is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware.

# Patches
* For Next.js 15.x, this issue is fixed in `15.2.3`
* For Next.js 14.x, this issue is fixed in `14.2.25`
* For Next.js 13.x, this issue is fixed in `13.5.9`
* For Next.js 12.x, this issue is fixed in `12.3.5`
* For Next.js 11.x, consult the below workaround.

_Note: Next.js deployments hosted on Vercel are automatically protected against this vulnerability._

# Workaround
If patching to a safe version is infeasible, it is recommend that you prevent external user requests which contain the `x-middleware-subrequest` header from reaching your Next.js application.

## Credits

- Allam Rachid (zhero;)
- Allam Yasser (inzo_)

Affected Packages

npm next
Affected versions: 13.0.0 (fixed in 13.5.9)
npm next
Affected versions: 14.0.0 (fixed in 14.2.25)
npm next
Affected versions: 15.0.0 (fixed in 15.2.3)
npm next
Affected versions: 11.1.4 (fixed in 12.3.5)

Related CVEs

CVE-2025-29927

Key Information

GHSA ID
GHSA-f82v-jwr5-mffw
Published
March 21, 2025 3:20 PM
Last Modified
March 28, 2025 3:31 PM
CVSS Score
9.0 /10
Primary Ecosystem
npm
Primary Package
next
GitHub Reviewed
✓ Yes

Dataset

Last updated: September 8, 2025 6:31 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.