Next.Js
by Vercel
Standard maintenance is sufficient
Next.Js has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
20.0%
Confirmed actively exploited (CISA)
2.9%
Public exploit code available
0.0%
Based on 35 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2025-29927 | 9.1 | 93.0% | — |
| CVE-2024-34351 | 7.5 | 92.8% | — |
| CVE-2025-55182 | 10.0 | 84.9% | Yes |
| CVE-2024-51479 | 7.5 | 66.7% | — |
| CVE-2024-46982 | 7.5 | 49.1% | — |
| CVE-2025-55184 | 7.5 | 26.2% | — |
| CVE-2025-55183 | 5.3 | 19.8% | — |
| CVE-2025-57822 | 6.5 | 5.6% | — |
| CVE-2021-43803 | 7.5 | 2.2% | — |
| CVE-2024-47831 | 5.9 | 1.7% | — |
| CVE-2022-23646 | 5.9 | 1.4% | — |
| CVE-2022-21721 | 5.9 | 0.9% | — |
| CVE-2024-34350 | 7.5 | 0.9% | — |
| CVE-2021-39178 | 7.5 | 0.7% | — |
| CVE-2024-39693 | 7.5 | 0.5% | — |
| CVE-2022-36046 | 5.3 | 0.4% | — |
| CVE-2021-37699 | 6.9 | 0.4% | — |
| CVE-2023-46298 | 7.5 | 0.4% | — |
| CVE-2025-67779 | 7.5 | 0.4% | — |
| CVE-2025-32421 | 3.7 | 0.4% | — |
21
/ 100
low-risk
Active Threat
20/50 · Moderate
Exploit Availability
1/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.