CVE-2026-44479— Vercel: Non-interactive mode includes CLI arguments in suggested command output
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-44479
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Vercel: Non-interactive mode includes CLI arguments in suggested command output
Source: NVD (National Vulnerability Database)
Vulnerability Description
Vercel’s AI Cloud is a unified platform for building modern applications. From 50.16.0 to 52.0.0, hen the Vercel CLI runs in non-interactive mode (--non-interactive or auto-detected AI agent), commands that cannot complete autonomously emit JSON payloads with suggested follow-up commands. If the user authenticated via --token or -t on the command line, the token value is included verbatim in those suggestions. The plaintext token may be captured in CI/CD logs, agent transcripts, or other automation output. This vulnerability is fixed in 52.0.1.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
vercel 信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
vercel是Vercel开源的一个云端应用开发与部署平台。 vercel 50.16.0至52.0.0版本存在信息泄露漏洞,该漏洞源于在非交互模式下运行时,无法自主完成的命令会发出包含建议后续命令的JSON负载,如果用户通过--token或-t在命令行进行身份验证,令牌值会原样包含在这些建议中,可能导致明文令牌被捕获在CI/CD日志或代理转录中。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-44479
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-44479
请登录查看更多情报信息。
- https://github.com/vercel/vercel/security/advisories/GHSA-pgf8-2hgj-grqgx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2026-44479
Same Patch Batch · vercel · 2026-05-13 · 13 CVEs total
| CVE-2026-44578 | 8.6 HIGH | Next.js: Server-side request forgery in applications using WebSocket upgrades |
| CVE-2026-44574 | 8.1 HIGH | Next.js: Middleware / Proxy bypass through dynamic route parameter injection |
| CVE-2026-45109 | 7.5 HIGH | Next.js: Middleware / Proxy bypass in App Router applications via segment-prefetch routes |
| CVE-2026-44579 | 7.5 HIGH | Next.js: Denial of Service via connection exhaustion in applications using Cache Component |
| CVE-2026-44575 | 7.5 HIGH | Next.js: Middleware / Proxy bypass in App Router applications via segment-prefetch routes |
| CVE-2026-44573 | 7.5 HIGH | Next.js: Middleware / Proxy bypass in Pages Router applications using i18n |
| CVE-2026-44580 | 6.1 MEDIUM | Next.js: Cross-site scripting in beforeInteractive scripts with untrusted input |
| CVE-2026-44577 | 5.9 MEDIUM | Next.js: Denial of Service in the Image Optimization API |
| CVE-2026-44576 | 5.4 MEDIUM | Next.js: Cache poisoning in React Server Component responses |
| CVE-2026-44581 | 4.7 MEDIUM | Next.js: Cross-site scripting in App Router applications using CSP nonces |
| CVE-2026-44572 | 3.7 LOW | Next.js: Middleware / Proxy redirects can be cache-poisoned |
| CVE-2026-44582 | 3.7 LOW | Next.js: Cache poisoning via collisions in React Server Component cache-busting |
IV. Related Vulnerabilities
Same vendor: vercel
- CVE-2026-45109
Next.js: Middleware / Proxy bypass in App Router application - CVE-2026-44582
Next.js: Cache poisoning via collisions in React Server Comp - CVE-2026-44581
Next.js: Cross-site scripting in App Router applications usi - CVE-2026-44580
Next.js: Cross-site scripting in beforeInteractive scripts w - CVE-2026-44579
Next.js: Denial of Service via connection exhaustion in appl
Same weakness: CWE-200
- CVE-2026-41615
Microsoft Authenticator Information Disclosure Vulnerability - CVE-2026-0245
Prisma Access Agent: Information Disclosure Vulnerabilities - CVE-2026-44431
urllib3: Sensitive headers forwarded across origins in proxi - CVE-2026-41954
iControl REST and tmsh vulnerability - CVE-2025-9987
Broadstreet <= 1.53.1 - Authenticated (Subscriber+) Informat
V. Comments for CVE-2026-44479
No comments yet