CVE-2022-36046

Next.js is a React framework that can provide building blocks to create web applications. All of the following must be true to be affected by this CVE: Next.js version 12.2.3, Node.js version above v15.0.0 being used with strict `unhandledRejection` exiting AND using next start or a [custom server](https://nextjs.org/docs/advanced-features/custom-server). Deployments on Vercel ([vercel.com](https://vercel.com/)) are not affected along with similar environments where `next-server` isn't being shared across requests.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:vercel:next.js:12.2.3:*:*:*:*:node.js:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*

History

No history.

Information

Published : 2022-08-31 19:15

Updated : 2024-02-28 19:29


NVD link : CVE-2022-36046

Mitre link : CVE-2022-36046

CVE.ORG link : CVE-2022-36046


JSON object : View

Products Affected

vercel

  • next.js

nodejs

  • node.js
CWE
CWE-754

Improper Check for Unusual or Exceptional Conditions

CWE-248

Uncaught Exception