- Patched high‑severity vulnerabilities including DoS via server components, middleware/proxy bypasses, SSRF in WebSocket upgrades, and cache poisoning in React Server Component responses.
- Fixed moderate and low‑severity issues such as XSS in App Router CSP nonces and beforeInteractive scripts, DoS in Image Optimization API, and cache poisoning via route parameter injection.
Community impact
Community ratings: 0 Useful, 0 Noise, 0 Risky, 0 Broke, 0 Try.