Middleware-based route protection bypass
- Category
- Company
- Published
A CVE has been released for a middleware-based route protection bypass affecting applications using createRouteMatcher in middleware or proxy.
Today, we released a CVE for a middleware-based route protection bypass. If your application uses createRouteMatcher in middleware or proxy (for Next, Nuxt, or Astro), please upgrade immediately.
Upgrade instructions and more details are available in the security advisory.
Please contact support with any additional questions or concerns.