Next.js version 15.2.3 has been released to address a security vulnerability (CVE-2025-29927). Additionally, backported patches are available. We recommend that all self-hosted Next.js deployments using next start and output: 'standalone' should update immediately. Continue reading for more details on the CVE. Timeline 2025-02-27T06:03Z: Disclosure to Next.js team via GitHub private vulnerability reporting 2025-03-14T17:13Z: Next.js team started triaging the report 2025-03-14T19:08Z: Patch pushe...