This week’s release introduces new detections for denial-of-service attempts targeting React (CVE-2026-23864).
Key Findings
- CVE-2026-23864 is a denial-of-service vulnerability in React that enables an attacker to trigger service disruption.
| Ruleset | Rule ID | Legacy Rule ID | Description | Previous Action | New Action | Comments |
|---|---|---|---|---|---|---|
| Cloudflare Managed Ruleset | aaede80b4d414dc89c443cea61680354 | N/A | React Server – DOS – CVE:CVE-2026-23864 – 1 | N/A | Block | This is a new detection. |
| Cloudflare Managed Ruleset | 3e93c9faaafa447c83a525f2dcdffcf8 | N/A | React Server – DOS – CVE:CVE-2026-23864 – 2 | N/A | Block | This is a new detection. |
| Cloudflare Managed Ruleset | 930020d567684f19b05fb35b349edbc6 | N/A | React Server – DOS – CVE:CVE-2026-23864 – 3 | N/A | Block | This is a new detection. |
Source: Cloudflare
Latest Posts
- Power Platform – Alerts for Microsoft Power Automate work queues is now available for public preview [MC1247812]
- (Updated) Upcoming change: disabling Teams meeting recording expiration notification emails [MC1245635]
- (Updated) Microsoft Outlook Mobile adds support for DLP policy tips and enforcement [MC1129716]
- (Updated) Microsoft Outlook for Windows: Add attachments while offline [MC1125491]
