Fluid Attacks Database

Description

A flaw was found in Next.js. React Server Component responses are vulnerable to cache poisoning in deployments that use shared caches without proper response partitioning. An attacker can exploit collisions in the _rsc cache-busting value to poison cache entries. This allows users to receive incorrect response variants for a given URL, potentially leading to information integrity issues.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
npm	next	>=13.4.6 <15.5.16 \|\| >=16.0.0 <16.2.5	15.5.16, 16.2.5
rpm rhel10	firefox	-	-
rpm rhel7	firefox	-	-
rpm rhel8	firefox	-	-
rpm rhel9	firefox	-	-
rpm rhel8	thunderbird	-	-
rpm rhel9	thunderbird	-	-
rpm rhel10	thunderbird	-	-

Aliases

1. CVE-2026-445822. NVD-2026-445823. OSV-2026-445824. GHSA-vfv6-92ff-j9495. GCVE-2026-44582

References

1. https://github.com/vercel/next.js/security/advisories/GHSA-vfv6-92ff-j9492. https://github.com/vercel/next.js/releases/tag/v15.5.163. https://github.com/vercel/next.js/releases/tag/v16.2.5