KEV Entry
CVE-2025-29927
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2026-06-23 00:00 UTC
Characteristics
91.0
Timestamps
2025-04-24
2025-04-24
2026-06-23
Scope
Affected: Next.js / Next.js | Class: web-app-framework | Severity: Critical (CVSS 9.1) | IoT: no | In CISA KEV: no | Honeypot connections on 2026-06-23: 32
References
- {'id': 'CVE-2025-29927', 'url': 'https://www.cve.org/CVERecord?id=CVE-2025-29927'}
- {'id': 'shadowserver', 'url': 'https://www.shadowserver.org/what-we-do/network-reporting/honeypot-exploited-vulnerabilities-report/'}
8b55a9e0-773b-454d-a554-6bb2723ee2d9
c8fb6bf1-f81f-4cb8-95b1-eadbb3b54ee8
2026-07-01 07:18 UTC
2026-07-01 07:18 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| honeypot | shadowserver | in_the_wild_attempts | 0.70 |
View details
|
- |