Intruvent Technologies
Contact us
9.1
Critical CVE Analysis PoC Available TLP:CLEAR

Next.js Critical Vulnerabilities

CVE-2025-29927 Authorization Bypass & CVE-2025-55182 React2Shell RCE

Critical vulnerabilities affecting the popular Next.js framework. CVE-2025-29927 allows authorization bypass via middleware manipulation, while CVE-2025-55182 (React2Shell) enables remote code execution through React Server Components.

CVSS Score
9.1 Critical
Affected Product
Vercel Next.js
CWE
CWE-285
Advisory
GHSA-f82v-jwr5-mffw
1
Executive Summary
Critical Impact
These vulnerabilities affect millions of Next.js applications. CVE-2025-29927 allows bypassing authentication middleware, while React2Shell enables RCE through Server Components.

Two critical vulnerabilities have been identified in Next.js, the popular React framework:

Key Facts

  • CVE-2025-29927: Authorization bypass via x-middleware-subrequest header manipulation
  • CVE-2025-55182: React2Shell RCE through Server Components
  • Millions of production applications potentially affected
  • PoC exploits publicly available

Full report content will be loaded from Artemis.
Contact us if you need the complete report.

Detect Next.js Vulnerability Exploitation

BRACE provides detection for web application attacks including:

  • Middleware bypass attempt detection
  • Suspicious header manipulation
  • Server-side code execution indicators
Learn More About BRACE Request Demo

Related Reports

Critical CVE Analysis

CVE-2024-55591: FortiOS

Another critical authentication bypass vulnerability.

View Analysis →
Critical CVE Analysis

CVE-2025-61757: Oracle IDM

Critical RCE in enterprise identity management.

View Analysis →
Critical Threat Actor

Scattered Spider

Group known for exploiting web application vulnerabilities.

View Profile →

Protect Your Web Applications

BRACE monitors for exploitation of web application vulnerabilities and 500+ other actively exploited CVEs.

Get BRACE Talk to an Expert