Filter

The RegisterDouble trouble for DNSSEC though the devil is in the details

First published (updated )

The RegisterChatGPT side-channel attack has easy fix: Token obfuscation

First published (updated )

BleepingComputerOkta says data leaked on hacking forum not from its systems

First published (updated )

Cloudflare CloudflareCloudflare WordPress plugin enables information disclosure of Cloudflare API (for low privileged users)

8.1
First published (updated )

Cloudflare ZlibMemory corruption issues is Cloudflare zlib implementation

EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

npm/wranglerArbitrary remote code execution within wrangler dev Workers sandbox

EPSS
0.05%
First published (updated )

npm/wranglerArbitrary remote file read in Wrangler dev server

EPSS
0.04%
First published (updated )

Cloudflare MiniflareServer-Side Request Forgery (SSRF) in Miniflare

8.1
EPSS
0.05%
First published (updated )

rust/quicheUnbounded queuing of path validation messages in cloudflare-quiche

EPSS
0.07%
First published (updated )

rust/tokio-boringResource exhaustion via memory leak in tokio-boring

EPSS
0.05%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudflare WarpInsufficient Validation on Override Codes for Always-Enabled WARP Mode

First published (updated )

Cloudflare WarpSpoofing User's Activity Loads in WARP Mobile Client (Android)

3.9
First published (updated )

Cloudflare WarpInjecting Activity Loads in WARP Mobile Client

First published (updated )

Cloudflare Lol-htmllol-html panics on certain HTML inputs

7.5
First published (updated )

Cloudflare WarpPlaintext transmission of DNS requests in Windows 1.1.1.1 WARP client

7.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudflare Odoh-rsInvalid Slice Split Results in Server Panic

First published (updated )

Cloudflare WranglerDirectory traversal vulnerability in Cloudflare Wrangler

First published (updated )

Cloudflare WarpRemote access to warp-svc.exe in Cloudflare WARP

7.3
First published (updated )

Cloudflare Lua-resty-jsonOut of Bounds Access Leading to Undefined Behavior

7.5
First published (updated )

Cloudflare CfntsOut of Bounds Slice index in cfnts leads to remote panic

8.6
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudflare WorkerdBuffer under-read in workerd

8.1
First published (updated )

Cloudflare CirclImproper random reading in CIRCL

8.2
First published (updated )

Cloudflare WarpLocal Privilege Escalation in Cloudflare WARP Installer (Windows)

7.8
First published (updated )

Cloudflare WarpLocal Privilege Escalation Vulnerability in WARP's MSI Installer

7.8
First published (updated )

Cloudflare CloudflaredLocal Privilege Escalation Vulnerability in cloudflared's Installer

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudflare Warpsupport_uri validation missing in WARP client for Windows

8.9
First published (updated )

Cloudflare WarpWARP client manifest misconfiguration leading to Task Hijacking

First published (updated )

Cloudflare Golz4Out-of-bounds write in github.com/cloudflare/golz4

First published (updated )

Cloudflare WarpBypassing Cloudflare Zero Trust policies using warp-cli set-custom-endpoint command

First published (updated )

Cloudflare Warp Mobile ClientLock WARP switch bypass on WARP mobile client using iOS quick action

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudflare Warp Mobile ClientLock WARP switch bypass by removing VPN profile on iOS mobile client

8.5
First published (updated )

Cloudflare Warp Mobile ClientLock WARP switch feature bypass on WARP mobile client for iOS

8.2
First published (updated )

Cloudflare WarpLock WARP switch bypass using warp-cli 'add-trusted-ssid' command

8.8
First published (updated )

go/github.com/cloudflare/cfrpkiOctoRPKI crash when maximum iterations number is reached

7.5
First published (updated )

go/github.com/cloudflare/goflow/v3Multiple DoS Attack Vectors in sflow packet handling

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudflare WarpZero Trust Secure Web Gateway policies bypass using WARP client subcommands

8.1
First published (updated )

Cloudflare WarpCloudlfare WARP Arbitrary File Overwrite

7.8
First published (updated )

Cloudflare WarpUnquoted Service Path in Cloudflare WARP for Windows

7.8
First published (updated )

debian/cfrpkiMisconfigured IP address field in ROA leads to OctoRPKI crash

First published (updated )

debian/cfrpkiNUL character in ROA causes OctoRPKI to crash

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

go/github.com/cloudflare/cfrpkiInfinite open connection causes OctoRPKI to hang forever

7.5
First published (updated )

Cloudflare OctorpkiInfinite certificate chain depth results in OctoRPKI running forever

7.5
First published (updated )

Debian Debian LinuxArbitrary filepath traversal via URI injection

First published (updated )

debian/cfrpkiOctoRPKI crashes when processing GZIP bomb returned via malicious repository

First published (updated )

debian/cfrpkiOctoRPKI lacks contextual out-of-bounds check when validating RPKI ROA maxLength values

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Cloudflare WarpPrivilege escalation through unquoted service binary path on Cloudflare WARP for Windows

7.8
First published (updated )

Cloudflare CloudflaredLocal Privilege Escalation in cloudflared

7.8
First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203