Security Advisory

CVE-2023-46298

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-22 00:00:00

Last updated 2024-09-12 17:50:34

Assigner mitre

State PUBLISHED

Description

Next.js before 13.4.20-canary.13 lacks a cache-control header and thus empty prefetch responses may sometimes be cached by a CDN, causing a denial of service to all users requesting the same URL via that CDN.

← Browse all CVEs View on cve.org ↗