{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/60223?format=json","vulnerability_id":"VCID-hy23-7zak-1kgf","summary":"Next.js: Next.js: Authorization bypass via crafted query parameters","aliases":[{"alias":"CVE-2026-44574"},{"alias":"GHSA-492v-c6pp-mqqv"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/114656?format=json","purl":"pkg:npm/next@15.5.16","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/next@15.5.16"},{"url":"http://public2.vulnerablecode.io/api/packages/114657?format=json","purl":"pkg:npm/next@16.2.5","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/next@16.2.5"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/856234?format=json","purl":"pkg:npm/next@15.4.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2q2t-61xt-u3ax"},{"vulnerability":"VCID-3ruh-95mg-wybh"},{"vulnerability":"VCID-3rx6-y94b-27ep"},{"vulnerability":"VCID-471k-npa7-wqhx"},{"vulnerability":"VCID-5c7e-4dkw-63fg"},{"vulnerability":"VCID-753e-dm2r-sybh"},{"vulnerability":"VCID-cqhe-wty9-5qec"},{"vulnerability":"VCID-ffry-2c7p-vyhp"},{"vulnerability":"VCID-hy23-7zak-1kgf"},{"vulnerability":"VCID-k1q6-b8t3-hqb6"},{"vulnerability":"VCID-kxdb-aa4z-qqbu"},{"vulnerability":"VCID-vqxd-ebjg-c3cw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/next@15.4.0"},{"url":"http://public2.vulnerablecode.io/api/packages/909200?format=json","purl":"pkg:npm/next@16.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-28zy-1rxg-6qdr"},{"vulnerability":"VCID-2q2t-61xt-u3ax"},{"vulnerability":"VCID-3ruh-95mg-wybh"},{"vulnerability":"VCID-3rx6-y94b-27ep"},{"vulnerability":"VCID-595f-xbud-zfhq"},{"vulnerability":"VCID-5uy4-cmw4-wygg"},{"vulnerability":"VCID-6x8y-p9bb-67af"},{"vulnerability":"VCID-753e-dm2r-sybh"},{"vulnerability":"VCID-8cuw-hj2n-wqhc"},{"vulnerability":"VCID-cv1a-dy7y-gfeq"},{"vulnerability":"VCID-d59z-sntr-uuak"},{"vulnerability":"VCID-ffry-2c7p-vyhp"},{"vulnerability":"VCID-gcrn-bck6-jkex"},{"vulnerability":"VCID-hy23-7zak-1kgf"},{"vulnerability":"VCID-k1q6-b8t3-hqb6"},{"vulnerability":"VCID-kxdb-aa4z-qqbu"},{"vulnerability":"VCID-ma16-g6bk-ffcq"},{"vulnerability":"VCID-musa-d29w-x3ak"},{"vulnerability":"VCID-mxv4-4jdk-4qg7"},{"vulnerability":"VCID-q678-fbsf-uue3"},{"vulnerability":"VCID-sr3u-ndc6-j7fz"},{"vulnerability":"VCID-vqxd-ebjg-c3cw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/next@16.0.0"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44574.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44574.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-44574","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.015","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01499","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01506","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.0151","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01502","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-44574"},{"reference_url":"https://github.com/vercel/next.js","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/vercel/next.js"},{"reference_url":"https://github.com/vercel/next.js/releases/tag/v15.5.16","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/vercel/next.js/releases/tag/v15.5.16"},{"reference_url":"https://github.com/vercel/next.js/releases/tag/v16.2.5","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/vercel/next.js/releases/tag/v16.2.5"},{"reference_url":"https://github.com/vercel/next.js/security/advisories/GHSA-492v-c6pp-mqqv","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-14T03:56:41Z/"}],"url":"https://github.com/vercel/next.js/security/advisories/GHSA-492v-c6pp-mqqv"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-44574","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-44574"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2477207","reference_id":"2477207","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2477207"},{"reference_url":"https://github.com/advisories/GHSA-492v-c6pp-mqqv","reference_id":"GHSA-492v-c6pp-mqqv","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-492v-c6pp-mqqv"}],"weaknesses":[{"cwe_id":551,"name":"Incorrect Behavior Order: Authorization Before Parsing and Canonicalization","description":"If a web server does not fully parse requested URLs before it examines them for authorization, it may be possible for an attacker to bypass authorization protection."},{"cwe_id":288,"name":"Authentication Bypass Using an Alternate Path or Channel","description":"A product requires authentication, but the product has an alternate path or channel that does not require authentication."}],"exploits":[],"severity_range_score":"7.0 - 8.9","exploitability":"0.5","weighted_severity":"8.0","risk_score":4.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hy23-7zak-1kgf"}