CloudVercel10 months ago

CVE-2025-57752

2 min read

A cache poisoning vulnerability in Next.js Image Optimization affected versions before v15.4.5 and v14.2.31. Sensitive image responses from API routes were cached without request headers, allowing unauthorized access. Vercel deployments were never impacted. The fix prevents header forwarding to the image endpoint.

Level

Hype check

Tap to vote and see what everyone thinks.

#next.js #security #vercel

Read full story

More to chew on!

AI36 minutes ago

Apple Issues AI Warning in iOS 26.5.2 Update

Summary by ByteBrief

More to chew on!

AI36 minutes ago

Apple Issues AI Warning in iOS 26.5.2 Update