Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers
- Posted on January 20, 2026
- By The Hacker News
- 4 Views
Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers
Cloudflare patched an ACME HTTP-01 validation flaw that disabled WAF protections and let unauthorized requests reach origin servers.
