Cloudflare experienced a significant outage on Friday after an update to its Web Application Firewall aimed at addressing a vulnerability in React Server Components backfired. At 9:09 a.m. UTC, the company acknowledged issues with its Dashboard and related APIs, warning customers of potential request failures. Just ten minutes later, they rolled out a fix, but reports of widespread problems flooded uptime monitoring sites like Downdetector.com. The outage affected not only Cloudflare but also major services like Shopify, Zoom, Claude AI, and Amazon Web Services, highlighting the interconnected nature of online platforms. The vulnerability in question, identified as CVE-2025-55182, allows attackers to execute code remotely on servers using the React 19 library. Cloudflare's attempt to protect its clients by implementing the update led to unintended consequences, causing a temporary disruption in service. This incident follows another major outage on November 18, where a configuration issue caused prolonged inaccessibility for its customers. The scale of impact from these failures underscores the risks associated with relying heavily on single service providers, as their failures can ripple through numerous dependent services, leaving many users affected.