CVE-2022-21721

Next.js is a React framework. Starting with version 12.0.0 and prior to version 12.0.9, vulnerable code could allow a bad actor to trigger a denial of service attack for anyone using i18n functionality. In order to be affected by this CVE, one must use next start or a custom server and the built-in i18n support. Deployments on Vercel, along with similar environments where invalid requests are filtered before reaching Next.js, are not affected. A patch has been released, `next@12.0.9`, that mitigates this issue. As a workaround, one may ensure `/${locale}/_next/` is blocked from reaching the Next.js instance until it becomes feasible to upgrade.

Publication date: Sat, 29 Jan 2022 04:15:00 +0000

Cyber News related to CVE-2022-21721

CVE-2022-21721 - Next.js is a React framework. Starting with version 12.0.0 and prior to version 12.0.9, vulnerable code could allow a bad actor to trigger a denial of service attack for anyone using i18n functionality. In order to be affected by this CVE, one must ...
1 year ago

CVE-2024-21721 - Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. ...
1 month ago Tenable.com

CVE-2023-21721 - Microsoft OneNote Elevation of Privilege Vulnerability ...
1 year ago

31 Alarming Identity Theft Statistics for 2024 - Identity theft is a prevalent issue that affects millions of people annually. Although the numbers are startling, we've selected the 31 most concerning identity theft statistics to help you understand how to secure your identity. In 2022, the FTC ...
1 year ago Pandasecurity.com

SecurityWeek Analysis: Over 450 Cybersecurity M&A Deals Announced in 2022 - MSSPs took the lead in cybersecurity M&A in 2022 with twice as many deals as in 2021. An analysis conducted by SecurityWeek shows that more than 450 cybersecurity-related mergers and acquisitions were announced in 2022. In 2022, we tracked a total of ...
2 years ago Securityweek.com

CVE-2022-22012 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. ...
2 years ago

CVE-2022-22013 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. ...
2 years ago

CVE-2022-22014 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. ...
2 years ago

CVE-2022-29141 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139. ...
2 years ago

CVE-2022-29128 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. ...
2 years ago

CVE-2022-29129 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. ...
2 years ago

CVE-2022-29130 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. ...
2 years ago

CVE-2022-29131 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. ...
2 years ago

CVE-2022-29137 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29139, CVE-2022-29141. ...
2 years ago

CVE-2022-29139 - Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29141. ...
2 years ago

CVE-2022-21928 - Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21892, CVE-2022-21958, CVE-2022-21959, CVE-2022-21960, CVE-2022-21961, CVE-2022-21962, CVE-2022-21963. ...
1 year ago

CVE-2022-21963 - Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21892, CVE-2022-21928, CVE-2022-21958, CVE-2022-21959, CVE-2022-21960, CVE-2022-21961, CVE-2022-21962. ...
2 years ago

CVE-2022-21962 - Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21892, CVE-2022-21928, CVE-2022-21958, CVE-2022-21959, CVE-2022-21960, CVE-2022-21961, CVE-2022-21963. ...
2 years ago

CVE-2022-21961 - Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21892, CVE-2022-21928, CVE-2022-21958, CVE-2022-21959, CVE-2022-21960, CVE-2022-21962, CVE-2022-21963. ...
2 years ago

CVE-2022-21960 - Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21892, CVE-2022-21928, CVE-2022-21958, CVE-2022-21959, CVE-2022-21961, CVE-2022-21962, CVE-2022-21963. ...
2 years ago

CVE-2022-21959 - Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21892, CVE-2022-21928, CVE-2022-21958, CVE-2022-21960, CVE-2022-21961, CVE-2022-21962, CVE-2022-21963. ...
2 years ago

CVE-2022-21958 - Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21892, CVE-2022-21928, CVE-2022-21959, CVE-2022-21960, CVE-2022-21961, CVE-2022-21962, CVE-2022-21963. ...
2 years ago

CVE-2022-21892 - Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21928, CVE-2022-21958, CVE-2022-21959, CVE-2022-21960, CVE-2022-21961, CVE-2022-21962, CVE-2022-21963. ...
2 years ago

CVE-2022-37990 - Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37988, CVE-2022-37991, CVE-2022-37995, CVE-2022-38022, CVE-2022-38037, CVE-2022-38038, CVE-2022-38039. ...
2 years ago

CVE-2022-37995 - Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37988, CVE-2022-37990, CVE-2022-37991, CVE-2022-38022, CVE-2022-38037, CVE-2022-38038, CVE-2022-38039. ...
2 years ago

Latest Cyber News

New Web Inject Attack Campaigns Targeting MacOS Users To Deploy FrigidStealer Malware - 18 minutes ago
Phishing attack hides JavaScript using invisible Unicode trick - 34 minutes ago
Russian CryptoBytes Hackers Exploiting Windows Machines To Deploy UxCryptor Ransomware - 1 hour ago
Hackers Inject FrigidStealer Malware on Your macOS Via Fake Browser Updates - 1 hour ago
New Fake Browser Updates Deploy NetSupport RAT Malware on Your Windows - 2 hours ago
BlackLock Emerging As a Major Player In RaaS With Variants for Windows, VMWare ESXi, & Linux Environments - 2 hours ago
New FrigidStealer infostealer infects Macs via fake browser updates - 3 hours ago
Australian fertility services giant Genea hit by security breach - 3 hours ago
North Korean Hackers Using Dropbox & PowerShell Scripts To Infiltrate Organizations - 4 hours ago
Patch Now: Palo Alto Flaw Exploited in the Wild - 4 hours ago
Thailand to take in 7,000 rescued from illegal cyber scam hubs in Myanmar | The Record from Recorded Future News - 4 hours ago
INE Security's Cybersecurity and IT Training Enhances Career Stability in Tech - 5 hours ago
Palo Alto Networks tags new firewall bug as exploited in attacks - 5 hours ago
The Browser Blind Spot: Why Your Browser is the Next Cybersecurity Battleground - 5 hours ago
The Board's Role in Cyber-Risk Management in OT Environments - 5 hours ago
Russian state hackers spy on Ukrainian military through Signal app | The Record from Recorded Future News - 6 hours ago
Palo Alto Networks Warns Hackers Combining Vulnerabilities to Compromise Firewalls - 6 hours ago
Lee Enterprises Says Ransomware Attack Compromises 'Critical' Systems - 6 hours ago
Hackers Turning Stolen Payment Card Data into Apple & Google Wallets - 7 hours ago
Threat Actors Using $10 Infostealer Malware To Breach Critical US Security - 7 hours ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

New Web Inject Attack Campaigns Targeting MacOS Users To Deploy FrigidStealer Malware - 18 minutes ago
Phishing attack hides JavaScript using invisible Unicode trick - 34 minutes ago
Russian CryptoBytes Hackers Exploiting Windows Machines To Deploy UxCryptor Ransomware - 1 hour ago
Hackers Inject FrigidStealer Malware on Your macOS Via Fake Browser Updates - 1 hour ago
New Fake Browser Updates Deploy NetSupport RAT Malware on Your Windows - 2 hours ago
BlackLock Emerging As a Major Player In RaaS With Variants for Windows, VMWare ESXi, & Linux Environments - 2 hours ago
Australian fertility services giant Genea hit by security breach - 3 hours ago
New FrigidStealer infostealer infects Macs via fake browser updates - 3 hours ago
Patch Now: Palo Alto Flaw Exploited in the Wild - 4 hours ago
North Korean Hackers Using Dropbox & PowerShell Scripts To Infiltrate Organizations - 4 hours ago
Thailand to take in 7,000 rescued from illegal cyber scam hubs in Myanmar | The Record from Recorded Future News - 4 hours ago
The Browser Blind Spot: Why Your Browser is the Next Cybersecurity Battleground - 5 hours ago
Palo Alto Networks tags new firewall bug as exploited in attacks - 5 hours ago
INE Security's Cybersecurity and IT Training Enhances Career Stability in Tech - 5 hours ago
The Board's Role in Cyber-Risk Management in OT Environments - 5 hours ago
Russian state hackers spy on Ukrainian military through Signal app | The Record from Recorded Future News - 6 hours ago
Palo Alto Networks Warns Hackers Combining Vulnerabilities to Compromise Firewalls - 6 hours ago
Lee Enterprises Says Ransomware Attack Compromises 'Critical' Systems - 6 hours ago
Threat Actors Using $10 Infostealer Malware To Breach Critical US Security - 7 hours ago
Hackers Turning Stolen Payment Card Data into Apple & Google Wallets - 7 hours ago