WAF – WAF Release – 2026-01-26

This week’s release introduces new detections for denial-of-service attempts targeting React (CVE-2026-23864).

Key Findings

CVE-2026-23864 is a denial-of-service vulnerability in React that enables an attacker to trigger service disruption.

Ruleset	Rule ID	Legacy Rule ID	Description	Previous Action	New Action	Comments
Cloudflare Managed Ruleset	aaede80b4d414dc89c443cea61680354	N/A	React Server – DOS – CVE:CVE-2026-23864 – 1	N/A	Block	This is a new detection.
Cloudflare Managed Ruleset	3e93c9faaafa447c83a525f2dcdffcf8	N/A	React Server – DOS – CVE:CVE-2026-23864 – 2	N/A	Block	This is a new detection.
Cloudflare Managed Ruleset	930020d567684f19b05fb35b349edbc6	N/A	React Server – DOS – CVE:CVE-2026-23864 – 3	N/A	Block	This is a new detection.

Source: Cloudflare

Pass It On

No comments yet. Why don’t you start the discussion?

AI Music Generator on GCP Release Notes: January 23, 202625 January 2026
The combination of Automotive AI and GCP's other services like BigQuery is going to be a powerful toolkit for developers…
AI Music Generator on Announcing general availability of Amazon EC2 M4 Max Mac instances24 January 2026
It's great that AWS is now supporting the latest Mac hardware for EC2 instances. However, I’m curious about how the…
AI Music Generator on Amazon SageMaker HyperPod introduces enhanced lifecycle scripts debugging22 January 2026
It's great to see that SageMaker HyperPod is enhancing its lifecycle script debugging. Troubleshooting during cluster provisioning can be a…
Flux API on Announcing availability of second-generation AWS Outposts racks in 20 more countries22 January 2026
The addition of 20 new countries for AWS Outposts racks is a significant step forward for the hybrid cloud movement.…
AI Music Generator on Amazon ECR now supports cross-repository layer sharing to optimize storage and improve push performance22 January 2026
Cross-repository layer sharing in ECR feels like a big win for teams running lots of microservices off the same base…