Security Advisory

CVE-2026-0969

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-12 01:35:06

Last updated 2026-04-17 17:57:55

Assigner HashiCorp

State PUBLISHED

Description

The serialize function used to compile MDX in next-mdx-remote is vulnerable to arbitrary code execution due to insufficient sanitization of MDX content. This vulnerability, CVE-2026-0969, is fixed in next-mdx-remote 6.0.0.

← Browse all CVEs View on cve.org ↗