A vulnerability, which was classified as problematic , was found in vercel next.js up to 15.5.15/16.2.4 . Affected by this issue is the function _rsc of the component React Server . Executing a manipulation can lead to use of weak hash. The identification of this vulnerability is CVE-2026-44582 . The attack may be launched remotely. There is no exploit available. You should upgrade the affected component.