Vulnerabilities / Next.js library with known vulnerabilities

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
↓

Severity

Low

CWE Name

Next.js library with known vulnerabilities

CWE ID

CWE-1035

CVSS Score

4.8

Compliance

OWASP TOP10 -> A5, A6
PCI-DSS -> 6.2
ISO27001 -> A.8.9

Next.js library with known vulnerabilities

The application uses an outdated version of the Next.js library, which has known vulnerabilities.

How to fix

To fix this issue, you just need to update Next.js to the latest version available on their website.

Do not forget to update all the Next.js files you have on the server.

The Enterprise Edition may be a better fit if you have 5 or more targets, Let’s schedule a quick call to discuss this.

You’ll be taken to a scheduler form to choose the suitable date and time with a Probely expert.