Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-45109

Next.js is a React framework for building full-stack web applications. From 15.2.0 to before 15.5.18 and 16.2.6, it was found that the fix addressing CVE-2026-44575 did not apply to middleware.ts with Turbopack. This vulnerability is fixed in 15.5.18 and 16.2.6.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 2.8%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2026-45109
  • Vercel » Next.js » Version: 15.2.0
    cpe:2.3:a:vercel:next.js:15.2.0
  • Vercel » Next.js » Version: 15.2.1
    cpe:2.3:a:vercel:next.js:15.2.1
  • Vercel » Next.js » Version: 15.2.2
    cpe:2.3:a:vercel:next.js:15.2.2
  • Vercel » Next.js » Version: 15.2.3
    cpe:2.3:a:vercel:next.js:15.2.3
  • Vercel » Next.js » Version: 15.2.4
    cpe:2.3:a:vercel:next.js:15.2.4
  • Vercel » Next.js » Version: 15.2.5
    cpe:2.3:a:vercel:next.js:15.2.5
  • Vercel » Next.js » Version: 15.2.6
    cpe:2.3:a:vercel:next.js:15.2.6
  • Vercel » Next.js » Version: 15.2.7
    cpe:2.3:a:vercel:next.js:15.2.7
  • Vercel » Next.js » Version: 15.2.8
    cpe:2.3:a:vercel:next.js:15.2.8
  • Vercel » Next.js » Version: 15.3.0
    cpe:2.3:a:vercel:next.js:15.3.0
  • Vercel » Next.js » Version: 15.3.1
    cpe:2.3:a:vercel:next.js:15.3.1
  • Vercel » Next.js » Version: 15.3.2
    cpe:2.3:a:vercel:next.js:15.3.2
  • Vercel » Next.js » Version: 15.3.3
    cpe:2.3:a:vercel:next.js:15.3.3
  • Vercel » Next.js » Version: 15.3.4
    cpe:2.3:a:vercel:next.js:15.3.4
  • Vercel » Next.js » Version: 15.3.5
    cpe:2.3:a:vercel:next.js:15.3.5
  • Vercel » Next.js » Version: 15.3.6
    cpe:2.3:a:vercel:next.js:15.3.6
  • Vercel » Next.js » Version: 15.3.7
    cpe:2.3:a:vercel:next.js:15.3.7
  • Vercel » Next.js » Version: 15.3.8
    cpe:2.3:a:vercel:next.js:15.3.8
  • Vercel » Next.js » Version: 15.4.0
    cpe:2.3:a:vercel:next.js:15.4.0
  • Vercel » Next.js » Version: 15.4.1
    cpe:2.3:a:vercel:next.js:15.4.1
  • Vercel » Next.js » Version: 15.4.10
    cpe:2.3:a:vercel:next.js:15.4.10
  • Vercel » Next.js » Version: 15.4.2
    cpe:2.3:a:vercel:next.js:15.4.2
  • Vercel » Next.js » Version: 15.4.3
    cpe:2.3:a:vercel:next.js:15.4.3
  • Vercel » Next.js » Version: 15.4.4
    cpe:2.3:a:vercel:next.js:15.4.4
  • Vercel » Next.js » Version: 15.4.5
    cpe:2.3:a:vercel:next.js:15.4.5
  • Vercel » Next.js » Version: 15.4.6
    cpe:2.3:a:vercel:next.js:15.4.6
  • Vercel » Next.js » Version: 15.4.7
    cpe:2.3:a:vercel:next.js:15.4.7
  • Vercel » Next.js » Version: 15.4.8
    cpe:2.3:a:vercel:next.js:15.4.8
  • Vercel » Next.js » Version: 15.4.9
    cpe:2.3:a:vercel:next.js:15.4.9
  • Vercel » Next.js » Version: 15.5.0
    cpe:2.3:a:vercel:next.js:15.5.0
  • Vercel » Next.js » Version: 15.5.1
    cpe:2.3:a:vercel:next.js:15.5.1
  • Vercel » Next.js » Version: 15.5.10
    cpe:2.3:a:vercel:next.js:15.5.10
  • Vercel » Next.js » Version: 15.5.11
    cpe:2.3:a:vercel:next.js:15.5.11
  • Vercel » Next.js » Version: 15.5.12
    cpe:2.3:a:vercel:next.js:15.5.12
  • Vercel » Next.js » Version: 15.5.13
    cpe:2.3:a:vercel:next.js:15.5.13
  • Vercel » Next.js » Version: 15.5.14
    cpe:2.3:a:vercel:next.js:15.5.14
  • Vercel » Next.js » Version: 15.5.15
    cpe:2.3:a:vercel:next.js:15.5.15
  • Vercel » Next.js » Version: 15.5.16
    cpe:2.3:a:vercel:next.js:15.5.16
  • Vercel » Next.js » Version: 15.5.17
    cpe:2.3:a:vercel:next.js:15.5.17
  • Vercel » Next.js » Version: 15.5.2
    cpe:2.3:a:vercel:next.js:15.5.2
  • Vercel » Next.js » Version: 15.5.3
    cpe:2.3:a:vercel:next.js:15.5.3
  • Vercel » Next.js » Version: 15.5.4
    cpe:2.3:a:vercel:next.js:15.5.4
  • Vercel » Next.js » Version: 15.5.5
    cpe:2.3:a:vercel:next.js:15.5.5
  • Vercel » Next.js » Version: 15.5.6
    cpe:2.3:a:vercel:next.js:15.5.6
  • Vercel » Next.js » Version: 15.5.7
    cpe:2.3:a:vercel:next.js:15.5.7
  • Vercel » Next.js » Version: 15.5.8
    cpe:2.3:a:vercel:next.js:15.5.8
  • Vercel » Next.js » Version: 15.5.9
    cpe:2.3:a:vercel:next.js:15.5.9
  • Vercel » Next.js » Version: 16.0.0
    cpe:2.3:a:vercel:next.js:16.0.0
  • Vercel » Next.js » Version: 16.0.1
    cpe:2.3:a:vercel:next.js:16.0.1
  • Vercel » Next.js » Version: 16.0.10
    cpe:2.3:a:vercel:next.js:16.0.10
  • Vercel » Next.js » Version: 16.0.2
    cpe:2.3:a:vercel:next.js:16.0.2
  • Vercel » Next.js » Version: 16.0.3
    cpe:2.3:a:vercel:next.js:16.0.3
  • Vercel » Next.js » Version: 16.0.4
    cpe:2.3:a:vercel:next.js:16.0.4
  • Vercel » Next.js » Version: 16.0.5
    cpe:2.3:a:vercel:next.js:16.0.5
  • Vercel » Next.js » Version: 16.0.6
    cpe:2.3:a:vercel:next.js:16.0.6
  • Vercel » Next.js » Version: 16.0.7
    cpe:2.3:a:vercel:next.js:16.0.7
  • Vercel » Next.js » Version: 16.0.8
    cpe:2.3:a:vercel:next.js:16.0.8
  • Vercel » Next.js » Version: 16.0.9
    cpe:2.3:a:vercel:next.js:16.0.9
  • Vercel » Next.js » Version: 16.1.0
    cpe:2.3:a:vercel:next.js:16.1.0
  • Vercel » Next.js » Version: 16.1.1
    cpe:2.3:a:vercel:next.js:16.1.1
  • Vercel » Next.js » Version: 16.1.2
    cpe:2.3:a:vercel:next.js:16.1.2
  • Vercel » Next.js » Version: 16.1.3
    cpe:2.3:a:vercel:next.js:16.1.3
  • Vercel » Next.js » Version: 16.1.4
    cpe:2.3:a:vercel:next.js:16.1.4
  • Vercel » Next.js » Version: 16.1.5
    cpe:2.3:a:vercel:next.js:16.1.5
  • Vercel » Next.js » Version: 16.1.6
    cpe:2.3:a:vercel:next.js:16.1.6
  • Vercel » Next.js » Version: 16.1.7
    cpe:2.3:a:vercel:next.js:16.1.7
  • Vercel » Next.js » Version: 16.2.0
    cpe:2.3:a:vercel:next.js:16.2.0
  • Vercel » Next.js » Version: 16.2.2
    cpe:2.3:a:vercel:next.js:16.2.2
  • Vercel » Next.js » Version: 16.2.3
    cpe:2.3:a:vercel:next.js:16.2.3
  • Vercel » Next.js » Version: 16.2.4
    cpe:2.3:a:vercel:next.js:16.2.4
  • Vercel » Next.js » Version: 16.2.5
    cpe:2.3:a:vercel:next.js:16.2.5


Products
Pricing
Contact Us

Shodan ® - All rights reserved