Known Vulnerabilities for products from Vercel
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Vercel".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-46508 json | Turborepo is a high-performance build system for JavaScript and TypeScript codebases. Prior to 2.9.14000, the Turborepo LSP V... | Not Provided | 2026-05-15 | 2026-05-19 |
| CVE-2026-45773 json | Turborepo is a high-performance build system for JavaScript and TypeScript codebases. Prior to 2.9.14, Turborepo's self-hoste... | Not Provided | 2026-05-15 | 2026-05-19 |
| CVE-2026-45772 json | Turborepo is a high-performance build system for JavaScript and TypeScript codebases. From 1.1.0 to before 2.9.14, Turborepo ... | Not Provided | 2026-05-15 | 2026-05-19 |
| CVE-2026-45109 json | Next.js is a React framework for building full-stack web applications. From 15.2.0 to before 15.5.18 and 16.2.6, it was found... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44582 json | Next.js is a React framework for building full-stack web applications. From 13.4.6 to before 15.5.16 and 16.2.5, React Server... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44581 json | Next.js is a React framework for building full-stack web applications. From 13.4.0 to before 15.5.16 and 16.2.5, App Router a... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44580 json | Next.js is a React framework for building full-stack web applications. From 13.0.0 to before 15.5.16 and 16.2.5, applications... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44579 json | Next.js is a React framework for building full-stack web applications. From to before 15.5.16 and 16.2.5, applications using... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44578 json | Not Provided | 2026-05-13 | 2026-05-13 | |
| CVE-2026-44577 json | Next.js is a React framework for building full-stack web applications. From 10.0.0 to before 15.5.16 and 16.2.5, when self-ho... | Not Provided | 2026-05-13 | 2026-05-13 |
| CVE-2026-44576 json | Next.js is a React framework for building full-stack web applications. From 14.2.0 to before 15.5.16 and 16.2.5, applications... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44575 json | Next.js is a React framework for building full-stack web applications. From 15.2.0 to before 15.5.16 and 16.2.5, App Router a... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44574 json | Next.js is a React framework for building full-stack web applications. From 15.4.0 to before 15.5.16 and 16.2.5, applications... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44573 json | Next.js is a React framework for building full-stack web applications. From 12.2.0 to before 15.5.16 and 16.2.5, Applications... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44572 json | Next.js is a React framework for building full-stack web applications. From 12.2.0 to before 15.5.16 and 16.2.5, an external ... | Not Provided | 2026-05-13 | 2026-05-15 |
| CVE-2026-44479 json | Not Provided | 2026-05-13 | 2026-05-13 | |
| CVE-2026-8769 json | A vulnerability was determined in vercel ai up to 3.0.97. The impacted element is the function createJsonResponseHandler/crea... | Not Provided | 2026-05-17 | 2026-05-19 |
| CVE-2026-8768 json | A vulnerability was found in vercel ai up to 3.0.97. The affected element is the function validateDownloadUrl of the file pac... | Not Provided | 2026-05-17 | 2026-05-19 |
| CVE-2026-8767 json | A vulnerability has been found in vercel ai up to 3.0.97. Impacted is the function run of the file .github/workflows/prettier... | Not Provided | 2026-05-17 | 2026-05-19 |
| CVE-2025-7074 json | A vulnerability classified as problematic has been found in vercel hyper up to 3.4.1. This affects the function expand/braceE... | Not Provided | 2025-07-05 | 2026-04-29 |
Known software with vulnerabilities from Vercel
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Vercel | Next.js | 1.0.0 |