CVE-2026-40155 | auth0 nextjs-auth0 up to 4.17.x authorization (GHSA-xq8m-7c5p-c2r6)

April 17, 2026 Yanac

A vulnerability was found in auth0 nextjs-auth0 up to 4.17.x. It has been rated as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to incorrect authorization.

This vulnerability is uniquely identified as CVE-2026-40155. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More