Cloudflare Release Notes

All Cloudflare Release Notes

• Nov 17, 2025

  • Parsed from source:
    Nov 17, 2025
  • Detected by Releasebot:
    Nov 18, 2025
  

  Application Security by Cloudflare

  WAF Release - 2025-11-17

  This week’s update strengthens detection signatures for DELMIA Apriso to block CVE-2025-6205 exploitation. Enhanced logic reduces risk of unauthenticated access and arbitrary account creation via crafted requests. The security update is now shipping, delivering improved protection.

  This week highlights enhancements to detection signatures improving coverage for vulnerabilities in DELMIA Apriso, linked to CVE-2025-6205.

  Key Findings

  This vulnerability allows unauthenticated attackers to gain privileged access to the application. The latest update provides enhanced detection logic for resilient protection against exploitation attempts.

  Impact

  ELmia Apriso (CVE-2025-6205): Exploitation could allow an unauthenticated remote attacker to bypass security checks by sending specially crafted requests to the application's message processor. This enables the creation of arbitrary employee accounts, which can be leveraged to modify system configurations and achieve full system compromise.

  Original source Report a problem

  Show more
• Nov 17, 2025

  • Parsed from source:
    Nov 17, 2025
  • Detected by Releasebot:
    Nov 18, 2025
  

  Cloudflare One by Cloudflare

  New Cloudflare One Navigation and Product Experience

  Zero Trust dashboard gets a major UX refresh with reorganized navigation, a guided login tour, and smarter search to find pages by old or new names. Some pages become tabs and settings move closer to tools; API and backend stay the same.

  The Zero Trust dashboard and navigation is receiving significant and exciting updates. The dashboard is being restructured to better support common tasks and workflows, and various pages have been moved and consolidated.
  There is a new guided experience on login detailing the changes, and you can use the Zero Trust dashboard search to find product pages by both their new and old names, as well as your created resources. To replay the guided experience, you can find it in Overview > Get Started.

  Notable changes

  • Product names have been removed from many top-level navigation items to help bring clarity to what they help you accomplish. For example, you can find Gateway policies under Traffic policies and CASB findings under Cloud & SaaS findings.
  • You can view all analytics, logs, and real-time monitoring tools from Insights.
  • Networks better maps the ways that your corporate network interacts with Cloudflare. Some pages like Tunnels, are now a tab rather than a full page as part of these changes. You can find them at Networks > Connectors.
  • Settings are now located closer to the tools and resources they impact. For example, this means youll find your WARP configurations at Team & Resources > Devices.
    No changes to our API endpoint structure or to any backend services have been made as part of this effort.

  Original source Report a problem

  Show more
• Nov 14, 2025

  • Parsed from source:
    Nov 14, 2025
  • Detected by Releasebot:
    Nov 16, 2025
  

  Cloudflare One by Cloudflare

  New SaaS Security weekly digests with API CASB

  Cloudflare introduces the CASB Weekly Digest, an opt-in email that delivers a Monday morning at-a-glance view of your API CASB findings, integration health, and proactive alerts. Stay on top of security without logging in, with easy opt-in in Manage Account > Notifications.

  CASB Weekly Digest notification

  You can now stay on top of your SaaS security posture with the new CASB Weekly Digest notification. This opt-in email digest is delivered to your inbox every Monday morning and provides a high-level summary of your organization's Cloudflare API CASB findings from the previous week.
  This allows security teams and IT administrators to get proactive, at-a-glance visibility into new risks and integration health without having to log in to the dashboard.
  To opt in, navigate to Manage Account > Notifications in the Cloudflare dashboard to configure the CASB Weekly Digest alert type.

  Key capabilities

  • At-a-glance summary — Review new high/critical findings, most frequent finding types, and new content exposures from the past 7 days.
  • Integration health — Instantly see the status of all your connected SaaS integrations (Healthy, Unhealthy, or Paused) to spot API connection issues.
  • Proactive alerting — The digest is sent automatically to all subscribed users every Monday morning.
  • Easy to configure — Users can opt in by enabling the notification in the Cloudflare dashboard under Manage Account > Notifications.

  Learn more

  • Configure notification preferences in Cloudflare.

  The CASB Weekly Digest notification is available to all Cloudflare users today.

  Original source Report a problem

  Show more
• Nov 12, 2025

  • Parsed from source:
    Nov 12, 2025
  • Detected by Releasebot:
    Nov 12, 2025
  

  Analytics by Cloudflare

  More SQL aggregate, date and time functions available in Workers Analytics Engine

  Workers Analytics Engine expands its SQL library with new aggregate (countIf, sumIf, avgIf) and date-time functions, enabling powerful, condition-based analytics on high-cardinality data for dashboards, billing, and custom analytics.

  You can now perform more powerful queries directly in Workers Analytics Engine with a major expansion of our SQL function library.

  Workers Analytics Engine allows you to ingest and store high-cardinality data at scale (such as custom analytics) and query your data through a simple SQL API.

  New aggregate functions

  • countIf() - count the number of rows which satisfy a provided condition
  • sumIf() - calculate a sum from rows which satisfy a provided condition
  • avgIf() - calculate an average from rows which satisfy a provided condition

  New date and time functions

  • toYear()
  • toMonth()
  • toDayOfMonth()
  • toDayOfWeek()
  • toHour()
  • toMinute()
  • toSecond()
  • toStartOfYear()
  • toStartOfMonth()
  • toStartOfWeek()
  • toStartOfDay()
  • toStartOfHour()
  • toStartOfFifteenMinutes()
  • toStartOfTenMinutes()
  • toStartOfFiveMinutes()
  • toStartOfMinute()
  • today()
  • toYYYYMM()

  Ready to get started?

  Whether you're building usage-based billing systems, customer analytics dashboards, or other custom analytics, these functions let you get the most out of your data.

  Get started with Workers Analytics Engine and explore all available functions in our SQL reference documentation.

  Original source Report a problem

  Show more
• Nov 12, 2025

  • Parsed from source:
    Nov 12, 2025
  • Detected by Releasebot:
    Nov 12, 2025
  

  Developer Platform by Cloudflare

  More SQL aggregate, date and time functions available in Workers Analytics Engine

  Workers Analytics Engine expands its SQL library with powerful new functions. New aggregates (countIf, sumIf, avgIf) and a rich set of date/time helpers boost high-cardinality data querying. Perfect for usage-based billing and analytics dashboards; explore the SQL reference.

  Workers Analytics Engine: Expanded SQL capabilities

  You can now perform more powerful queries directly in Workers Analytics Engine with a major expansion of our SQL function library.

  Workers Analytics Engine allows you to ingest and store high-cardinality data at scale (such as custom analytics) and query your data through a simple SQL API.

  Today, we've expanded Workers Analytics Engine's SQL capabilities with several new functions:

  New aggregate functions

  • countIf() - count the number of rows which satisfy a provided condition
  • sumIf() - calculate a sum from rows which satisfy a provided condition
  • avgIf() - calculate an average from rows which satisfy a provided condition

  New date and time functions

  • toYear()
  • toMonth()
  • toDayOfMonth()
  • toDayOfWeek()
  • toHour()
  • toMinute()
  • toSecond()
  • toStartOfYear()
  • toStartOfMonth()
  • toStartOfWeek()
  • toStartOfDay()
  • toStartOfHour()
  • toStartOfFifteenMinutes()
  • toStartOfTenMinutes()
  • toStartOfFiveMinutes()
  • toStartOfMinute()
  • today()
  • toYYYYMM()

  Whether you're building usage-based billing systems, customer analytics dashboards, or other custom analytics, these functions let you get the most out of your data.

  Get started with Workers Analytics Engine and explore all available functions in our SQL reference documentation.

  Original source Report a problem

  Show more
• Nov 11, 2025

  • Parsed from source:
    Nov 11, 2025
  • Detected by Releasebot:
    Nov 12, 2025
  

  Cloudflare One by Cloudflare

  WARP client for Windows (version 2025.9.558.0)

  A new GA Windows WARP client release brings PMTUD-powered MTU discovery, a new GUI connection status, and Windows 11 ARM support with minor fixes. The update also refines user switch harmony and health indicators, while PMTUD remains opt-in.

  A new GA release for the Windows WARP client is now available on the stable releases downloads page.
  This release contains minor fixes, improvements, and new features including Path Maximum Transmission Unit Discovery (PMTUD). When PMTUD is enabled, the client will dynamically adjust packet sizing to optimize connection performance. There is also a new connection status message in the GUI to inform users that the local network connection may be unstable. This will make it easier to diagnose connectivity issues.

  Changes and improvements

  • Fixed an inconsistency with Global WARP override settings in multi-user environments when switching between users.
  • The GUI now displays the health of the tunnel and DNS connections by showing a connection status message when the network may be unstable. This will make it easier to diagnose connectivity issues.
  • Fixed an issue where deleting a registration was erroneously reported as having failed.
  • Path Maximum Transmission Unit Discovery (PMTUD) may now be used to discover the effective MTU of the connection. This allows the WARP client to improve connectivity optimized for each network. PMTUD is disabled by default. To enable it, refer to the PMTUD documentation.
  • Improvements for the OS version WARP client check. Windows Updated Build Revision (UBR) numbers can now be checked by the client to ensure devices have required security patches and features installed.
  • The WARP client now supports Windows 11 ARM-based machines. For information on known limitations, refer to the Known limitations page.

  Known issues

  • For Windows 11 24H2 users, Microsoft has confirmed a regression that may lead to performance issues like mouse lag, audio cracking, or other slowdowns. Cloudflare recommends users experiencing these issues upgrade to a minimum Windows 11 24H2 KB5062553 or higher for resolution.
  • Devices using WARP client 2025.4.929.0 and up may experience Local Domain Fallback failures if a fallback server has not been configured. To configure a fallback server, refer to Route traffic to fallback server.
  • Devices with KB5055523 installed may receive a warning about Win32/ClickFix.ABA being present in the installer. To resolve this false positive, update Microsoft Security Intelligence to version 1.429.19.0 or later.
  • DNS resolution may be broken when the following conditions are all true:
    • WARP is in Secure Web Gateway without DNS filtering (tunnel-only) mode.
    • A custom DNS server address is configured on the primary network adapter.
    • The custom DNS server address on the primary network adapter is changed while WARP is connected.
      To work around this issue, reconnect the WARP client by toggling off and back on.

  Original source Report a problem

  Show more
• Nov 11, 2025

  • Parsed from source:
    Nov 11, 2025
  • Detected by Releasebot:
    Nov 12, 2025
  

  Cloudflare One by Cloudflare

  WARP client for Linux (version 2025.9.558.0)

  A new GA Linux WARP client introduces PMTUD based MTU optimization, a GUI status message for unstable networks, and health indicators for tunnel and DNS. It also updates the Linux package public key and provides update instructions.

  A new GA release for the Linux WARP client is now available on the stable releases downloads page.
  This release contains minor fixes, improvements, and new features including Path Maximum Transmission Unit Discovery (PMTUD). When PMTUD is enabled, the client will dynamically adjust packet sizing to optimize connection performance. There is also a new connection status message in the GUI to inform users that the local network connection may be unstable. This will make it easier to diagnose connectivity issues.
  WARP client version 2025.8.779.0 introduced an updated public key for Linux packages. The public key must be updated if it was installed before September 12, 2025 to ensure the repository remains functional after December 4, 2025. Instructions to make this update are available at pkg.cloudflareclient.com.

  Changes and improvements

  • The GUI now displays the health of the tunnel and DNS connections by showing a connection status message when the network may be unstable. This will make it easier to diagnose connectivity issues.
  • Fixed an issue where deleting a registration was erroneously reported as having failed.
  • Path Maximum Transmission Unit Discovery (PMTUD) may now be used to discover the effective MTU of the connection. This allows the WARP client to improve connectivity optimized for each network. PMTUD is disabled by default. To enable it, refer to the PMTUD documentation.

  Original source Report a problem

  Show more
• Nov 11, 2025

  • Parsed from source:
    Nov 11, 2025
  • Detected by Releasebot:
    Nov 12, 2025
  

  Analytics by Cloudflare

  Logpush Health Dashboards

  Logpush Health Dashboards launch provides real time visibility into Logpush jobs with Upload Health and Upload Reliability views. Monitor data completeness, success rate, retries and latency, and diagnose issues from the Cloudflare dashboard.

  Logpush Health Dashboards

  We’re excited to introduce Logpush Health Dashboards, giving customers real-time visibility into the status, reliability, and performance of their Logpush jobs. Health dashboards make it easier to detect delivery issues, monitor job stability, and track performance across destinations. The dashboards are divided into two sections:

  • Upload Health: See how much data was successfully uploaded, where drops occurred, and how your jobs are performing overall. This includes data completeness, success rate, and upload volume.

  • Upload Reliability – Diagnose issues impacting stability, retries, or latency, and monitor key metrics such as retry counts, upload duration, and destination availability.

  Health Dashboards can be accessed from the Logpush page in the Cloudflare dashboard at the account or zone level, under the Health tab. For more details, refer to our Logpush Health Dashboards documentation, which includes a comprehensive troubleshooting guide to help interpret and resolve common issues.

  Original source Report a problem

  Show more
• Nov 11, 2025

  • Parsed from source:
    Nov 11, 2025
  • Detected by Releasebot:
    Nov 12, 2025
  

  Cloudflare One by Cloudflare

  WARP client for macOS (version 2025.9.558.0)

  New GA macOS WARP release adds PMTUD MTU discovery, a new GUI connection status, and tunnel/DNS health indicators. Also fixes a deletion failure report. PMTUD is off by default; known Local Domain Fallback issue affects some builds.

  Changes and improvements

  • The GUI now displays the health of the tunnel and DNS connections by showing a connection status message when the network may be unstable. This will make it easier to diagnose connectivity issues.
  • Fixed an issue where deleting a registration was erroneously reported as having failed.
  • Path Maximum Transmission Unit Discovery (PMTUD) may now be used to discover the effective MTU of the connection. This allows the WARP client to improve connectivity optimized for each network. PMTUD is disabled by default. To enable it, refer to the PMTUD documentation.

  Known issues

  • Devices using WARP client 2025.4.929.0 and up may experience Local Domain Fallback failures if a fallback server has not been configured. To configure a fallback server, refer to Route traffic to fallback server.

  Original source Report a problem

  Show more
• Nov 11, 2025

  • Parsed from source:
    Nov 11, 2025
  • Detected by Releasebot:
    Nov 13, 2025
  

  Core Platform by Cloudflare

  Logpush Health Dashboards

  Logpush Health Dashboards give real time visibility into Logpush jobs with Upload Health and Upload Reliability metrics. Access them from the Logpush page in Cloudflare dashboard under Health for quick issue diagnosis and guided troubleshooting.

  Logpush Health Dashboards

  We’re excited to introduce Logpush Health Dashboards, giving customers real-time visibility into the status, reliability, and performance of their Logpush jobs. Health dashboards make it easier to detect delivery issues, monitor job stability, and track performance across destinations. The dashboards are divided into two sections:

  Upload Health

  See how much data was successfully uploaded, where drops occurred, and how your jobs are performing overall. This includes data completeness, success rate, and upload volume.

  Upload Reliability

  Diagnose issues impacting stability, retries, or latency, and monitor key metrics such as retry counts, upload duration, and destination availability.

  Health Dashboards can be accessed from the Logpush page in the Cloudflare dashboard at the account or zone level, under the Health tab. For more details, refer to our Logpush Health Dashboards documentation, which includes a comprehensive troubleshooting guide to help interpret and resolve common issues.

  Original source Report a problem

  Show more