ByteOS Network

NVD Vulnerability Details :

CVE-2026-44581

Analyzed

Source-security-advisories@github.com

Published At-13 May, 2026 | 18:16

Updated At-14 May, 2026 | 18:30

Next.js is a React framework for building full-stack web applications. From 13.4.0 to before 15.5.16 and 16.2.5, App Router applications that rely on CSP nonces can be vulnerable to stored cross-site scripting when deployed behind shared caches. In affected versions, malformed nonce values derived from request headers could be reflected into rendered HTML in an unsafe way, allowing an attacker to poison cached responses and cause script execution for later visitors. This vulnerability is fixed in 15.5.16 and 16.2.5.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	4.7	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N

Type: Secondary

Version: 3.1

Base score: 4.7

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N

CPE Matches

vercel>>next.js>>Versions from 13.4.0(inclusive) to 15.5.16(exclusive)

cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*

vercel>>next.js>>Versions from 16.0.0(inclusive) to 16.2.5(exclusive)

cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*

Weaknesses

CWE ID	Type	Source
CWE-79	Primary	security-advisories@github.com

CWE ID: CWE-79

Type: Primary

Source: security-advisories@github.com

References

Hyperlink	Source	Resource
https://github.com/vercel/next.js/security/advisories/GHSA-ffhc-5mcf-pf4q	security-advisories@github.com	Mitigation Vendor Advisory

Hyperlink: https://github.com/vercel/next.js/security/advisories/GHSA-ffhc-5mcf-pf4q

Source: security-advisories@github.com

Resource:

Mitigation

Vendor Advisory

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History