New critical Linuxfoundation Pipecd privilege escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
High-risk exposure
CVE-2025-29927Next.js is a React framework for building full-stack web applications.
CVSS 9.1
Potential privilege escalation to admin/root
New high-severity Vercel Next.js privilege escalation — watch for exploit drops and scanner noise in the first 72 hours after disclosure.