Vercel Product Security Update Advisory (CVE-2025-49826)

Jul 07 2025

Overview

We have released a security update to address a vulnerability in Vercel products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-49826

Next.js Versions: 15.0.4 and above and below 15.2.0

Resolved Vulnerabilities

Denial of service vulnerability due to cache corruption in Next.js (CVE-2025-49826)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-49826

Next.js version: 15.2.0 and higher

References

[1] DoS via cache poisoning
https://github.com/vercel/next.js/security/advisories/GHSA-67rr-84xm-4c7r

Vercel Product Security Update Advisory (CVE-2025-49826)

GitLab Product Security Update Advisory

MS Family July 2025 Routine Security Update Advisory

Tags:

GitLab Product Security Update Advisory

MS Family July 2025 Routine Security Update Advisory