Filters
Software
cloudflare warp
15
cloudflare octorpki
8
cloudflare warp mobile client
3
cloudflare wrangler
3
cloudflare cloudflared
2
cloudflare ai gateway
1
cloudflare atlassian server
1
cloudflare boring
1
cloudflare cfnts
1
cloudflare circl
1
cloudflare cloudflare
1
cloudflare dnssec-validated dns services
1
cloudflare goflow
1
cloudflare golz4
1
cloudflare lol-html
1
cloudflare lua-resty-json
1
cloudflare miniflare
1
cloudflare odoh-rs
1
cloudflare quiche
1
cloudflare workerd
1
cloudflare workers ai
1
cloudflare zlib
1
The RegisterDouble trouble for DNSSEC though the devil is in the details
First published (updated )
News
The RegisterThe RegisterChatGPT side-channel attack has easy fix: Token obfuscation
First published (updated )
News
The RegisterBleepingComputerOkta says data leaked on hacking forum not from its systems
First published (updated )
News
BleepingComputerCloudflare CloudflareCloudflare WordPress plugin enables information disclosure of Cloudflare API (for low privileged users)
8.1
First published (updated )
Cloudflare ZlibMemory corruption issues is Cloudflare zlib implementation
5.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
npm/wranglerArbitrary remote code execution within wrangler dev Workers sandbox
9.3
EPSS
0.05%
First published (updated )
npm/wranglerArbitrary remote file read in Wrangler dev server
6.9
EPSS
0.04%
First published (updated )
Cloudflare MiniflareServer-Side Request Forgery (SSRF) in Miniflare
8.1
EPSS
0.05%
First published (updated )
rust/quicheUnbounded queuing of path validation messages in cloudflare-quiche
5.3
EPSS
0.07%
First published (updated )
rust/tokio-boringResource exhaustion via memory leak in tokio-boring
5.3
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudflare WarpInsufficient Validation on Override Codes for Always-Enabled WARP Mode
5.5
First published (updated )
Cloudflare WarpSpoofing User's Activity Loads in WARP Mobile Client (Android)
3.9
First published (updated )
Cloudflare WarpInjecting Activity Loads in WARP Mobile Client
5.5
First published (updated )
Cloudflare Lol-htmllol-html panics on certain HTML inputs
7.5
First published (updated )
Cloudflare WarpPlaintext transmission of DNS requests in Windows 1.1.1.1 WARP client
7.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudflare Odoh-rsInvalid Slice Split Results in Server Panic
5.9
First published (updated )
Cloudflare WranglerDirectory traversal vulnerability in Cloudflare Wrangler
5.7
First published (updated )
Cloudflare WarpRemote access to warp-svc.exe in Cloudflare WARP
7.3
First published (updated )
Cloudflare Lua-resty-jsonOut of Bounds Access Leading to Undefined Behavior
7.5
First published (updated )
Cloudflare CfntsOut of Bounds Slice index in cfnts leads to remote panic
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudflare WarpLocal Privilege Escalation in Cloudflare WARP Installer (Windows)
7.8
First published (updated )
Cloudflare WarpLocal Privilege Escalation Vulnerability in WARP's MSI Installer
7.8
First published (updated )
Cloudflare CloudflaredLocal Privilege Escalation Vulnerability in cloudflared's Installer
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudflare Warpsupport_uri validation missing in WARP client for Windows
8.9
First published (updated )
Cloudflare WarpWARP client manifest misconfiguration leading to Task Hijacking
5.5
First published (updated )
Cloudflare Golz4Out-of-bounds write in github.com/cloudflare/golz4
9.8
First published (updated )
Cloudflare WarpBypassing Cloudflare Zero Trust policies using warp-cli set-custom-endpoint command
9.8
First published (updated )
Cloudflare Warp Mobile ClientLock WARP switch bypass on WARP mobile client using iOS quick action
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudflare Warp Mobile ClientLock WARP switch bypass by removing VPN profile on iOS mobile client
8.5
First published (updated )
Cloudflare Warp Mobile ClientLock WARP switch feature bypass on WARP mobile client for iOS
8.2
First published (updated )
Cloudflare WarpLock WARP switch bypass using warp-cli 'add-trusted-ssid' command
8.8
First published (updated )
go/github.com/cloudflare/cfrpkiOctoRPKI crash when maximum iterations number is reached
7.5
First published (updated )
go/github.com/cloudflare/goflow/v3Multiple DoS Attack Vectors in sflow packet handling
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudflare WarpZero Trust Secure Web Gateway policies bypass using WARP client subcommands
8.1
First published (updated )
Cloudflare WarpCloudlfare WARP Arbitrary File Overwrite
7.8
First published (updated )
Cloudflare WarpUnquoted Service Path in Cloudflare WARP for Windows
7.8
First published (updated )
debian/cfrpkiMisconfigured IP address field in ROA leads to OctoRPKI crash
6.5
First published (updated )
debian/cfrpkiNUL character in ROA causes OctoRPKI to crash
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
go/github.com/cloudflare/cfrpkiInfinite open connection causes OctoRPKI to hang forever
7.5
First published (updated )
Cloudflare OctorpkiInfinite certificate chain depth results in OctoRPKI running forever
7.5
First published (updated )
Debian Debian LinuxArbitrary filepath traversal via URI injection
9.8
First published (updated )
debian/cfrpkiOctoRPKI crashes when processing GZIP bomb returned via malicious repository
6.5
First published (updated )
debian/cfrpkiOctoRPKI lacks contextual out-of-bounds check when validating RPKI ROA maxLength values
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cloudflare WarpPrivilege escalation through unquoted service binary path on Cloudflare WARP for Windows
7.8
First published (updated )
Cloudflare CloudflaredLocal Privilege Escalation in cloudflared
7.8
First published (updated )