Security Advisory

Vercel Product Security Update Advisory (CVE-2025-29927)

  • Mar 27 2025
Vercel Product Security Update Advisory (CVE-2025-29927)

Overview

We have released a security update to address a vulnerability in Vercel products. Users of affected products are advised to update to the latest version.
 

 

Affected Products

 

CVE-2025-29927

Next.js 15.x Versions
Next.js 14.x Versions
Next.js 13.x Versions
Next.js 12.x Versions

 

 

Resolved Vulnerabilities

Improper Authorization Vulnerability (CVE-2025-29927)

 

 

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2025-29927

Next.js 15.2.3 version
Next.js version 14.2.25
Next.js version 13.5.9
Next.js 12.3.5 version

 

 

References

[1] cve-2025-29927
https://nextjs.org/blog/cve-2025-29927

Tags:
Previous Post

Next Post