Vulnerabilities > Vercel > Next JS
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-22 | CVE-2023-46298 | Unspecified vulnerability in Vercel Next.Js Next.js before 13.4.20-canary.13 lacks a cache-control header and thus empty prefetch responses may sometimes be cached by a CDN, causing a denial of service to all users requesting the same URL via that CDN. | 7.5 |
| 2022-02-17 | CVE-2022-23646 | User Interface (UI) Misrepresentation of Critical Information vulnerability in Vercel Next.Js Next.js is a React framework. | 4.3 |
| 2022-01-28 | CVE-2022-21721 | Unspecified vulnerability in Vercel Next.Js Next.js is a React framework. | 7.5 |
| 2021-12-10 | CVE-2021-43803 | Unspecified vulnerability in Vercel Next.Js Next.js is a React framework. | 7.5 |
| 2021-08-31 | CVE-2021-39178 | Cross-site Scripting vulnerability in Vercel Next.Js Next.js is a React framework. | 4.3 |
| 2020-10-08 | CVE-2020-15242 | Open Redirect vulnerability in Vercel Next.Js Next.js versions >=9.5.0 and <9.5.4 are vulnerable to an Open Redirect. | 5.8 |