Back to overview

CVE-2026-55641

HIGH
8.2
CVSS 3.1
Description
9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is local by reading the client-controlled Host header, allowing a remote unauthenticated attacker to send Host: localhost and bypass API-key authentication. In the default configuration, this exposes the /v1 proxy to upstream provider calls using stored provider credentials and allows /v1/search with the searxng provider_options.baseUrl parameter to drive server-side requests to internal or cloud-metadata hosts. This issue is fixed in version 0.5.2.

Metadata

CVE ID
CVE-2026-55641
State
PUBLISHED
Assigner
GitHub_M
Reserved
2026-06-16 23:52 UTC
Published
2026-07-10 15:36 UTC
Last updated
2026-07-10 15:36 UTC
Primary CWE
CWE-290
CWE-290: Authentication Bypass by Spoofing
Vendor / Product
decolua / 9router
Sources
cve.org  ·  NVD

Severity & Metrics

8.2 HIGH CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Affected products (1)
VendorProductPlatformVersions
decolua 9router < 0.5.2
Weakness (CWE)
CWESourceDescription
CWE-1327 cna CWE-1327: Binding to an Unrestricted IP Address
CWE-290 cna CWE-290: Authentication Bypass by Spoofing
CWE-348 cna CWE-348: Use of Less Trusted Source
CWE-918 cna CWE-918: Server-Side Request Forgery (SSRF)
CVSS scores (1)
ScoreSeverityVersionSourceVector
8.2 HIGH 3.1 cna CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
References (3)
Back to overview