All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

WAF - WAF Release - 2025-12-03 - Emergency

7mo ago

Source

CloudflareWAF - WAF Release - 2025-12-03 - Emergencycloudflare.com
Snippet from the RSS feed
The WAF rule deployed yesterday to block unsafe deserialization-based RCE has been updated. The rule description now reads “React – RCE – CVE-2025-55182”, explicitly mapping to the recently disclosed React Server Components vulnerability. Detection logic remains unchanged. Key Findings Rule description updated to reference React – RCE – CVE-2025-55182 while retaining existing unsafe-deserialization detection. Impact Improved classification and traceability with no change to coverage against remote code execution attempts. Ruleset Rule ID Legacy Rule ID Description Previous Action New Action Comments Cloudflare Managed Ruleset 33aa8a8a948b48b28d40450c5fb92fba N/A React - RCE - CVE:CVE-2025-55182 N/A Block Rule metadata description changed. Detection unchanged. Cloudflare Free Ruleset 2b5d06e34a814a889bee9a0699702280 N/A React - RCE - CVE:CVE-2025-55182 N/A Block Rule metadata description changed. Detection unchanged.

You might also wanna read

Comments

Sign in to join the conversation.

No comments yet. Be the first.