| name | Next.js library with known vulnerabilities | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| severity | low | ||||||||||
| cvss-score | 4.8 | ||||||||||
| cvss-vector | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N | ||||||||||
| cwe-id | CWE-1035 | ||||||||||
| cwe-name | OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities | ||||||||||
| compliance |
|
The application uses an outdated version of the Next.js library, which has known vulnerabilities.
{% tabs nextjs-library-with-known-vulnerabilities %} {% tab nextjs-library-with-known-vulnerabilities generic %} To fix this issue, you just need to update Next.js to the latest version available on their website.
Do not forget to update all the Next.js files you have on the server. {% endtab %}
{% endtabs %}