Lucene search
K

React2DoS (CVE-2026-23869): When the Flight Protocol Crashes at Takeoff

🗓️ 09 Apr 2026 14:54:18Reported by Yohann SillamType 
impervablog
 impervablog
🔗 www.imperva.com👁 13 Views

High severity unauthenticated remote denial of service in React Server Components via Flight protocol, React2DoS.

Related
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for CVE-2026-23869
11 Apr 202605:00
githubexploit
GithubExploit
Exploit for CVE-2026-23869
4 Jul 202607:17
githubexploit
GithubExploit
Exploit for CVE-2026-23869
11 Apr 202605:00
githubexploit
GithubExploit
Exploit for CVE-2026-23869
10 Apr 202606:34
githubexploit
Akamai Blog
CVE-2026-23864: React and Next.js Denial of Service via Memory Exhaustion
26 Jan 202612:00
akamaiblog
ATTACKERKB
CVE-2026-23864
26 Jan 202619:16
attackerkb
ATTACKERKB
CVE-2026-23869
8 Apr 202619:11
attackerkb
BDU FSTEC
The vulnerabilities of the React frontend building libraries React-server-dom-parcel, React-server-dom-turbopack, and React-server-dom-webpack allow attackers to cause service failures.
18 Feb 202600:00
bdu_fstec
Circl
CVE-2026-23864
26 Jan 202619:51
circl
Circl
CVE-2026-23869
9 Apr 202601:27
circl
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

09 Apr 2026 14:54Current
7.5High risk
Vulners AI Score7.5
CVSS 3.17.5
EPSS0.02499
SSVC
13