Known Vulnerabilities for Routinator by Nlnetlabs
Listed below are 10 of the newest known vulnerabilities associated with "Routinator" by "Nlnetlabs".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-49235 json | When Routinator encounters a file via RRDP using a specifically crafted Document Type Definition, Routinator crashes. | Not Provided | 2026-06-08 | 2026-06-08 |
| CVE-2026-49234 json | When sending a specifically crafted non-UTF-8 string as select-asn query parameter to the /api/v1/origins endpoint, Routinato... | Not Provided | 2026-06-08 | 2026-06-08 |
| CVE-2026-49233 json | Routinator does not properly check the module component of rsync URIs, which are used to create the file system paths for the... | Not Provided | 2026-06-08 | 2026-06-08 |
| CVE-2026-49232 json | Routinator exits on any error when accepting incoming HTTP or RTR connections, including ones it can recover from such as run... | Not Provided | 2026-06-08 | 2026-06-08 |
| CVE-2023-39916 json | NLnet Labs’ Routinator 0.9.0 up to and including 0.12.1 contains a possible path traversal vulnerability in the optional, o... | 6.5 - MEDIUM | 2023-09-13 | 2023-09-19 |
| CVE-2023-39915 json | NLnet Labs’ Routinator up to and including version 0.12.1 may crash when trying to parse certain malformed RPKI objects. Th... | 7.5 - HIGH | 2023-09-13 | 2023-09-15 |
| CVE-2022-3029 json | In NLnet Labs Routinator 0.9.0 up to and including 0.11.2, due to a mistake in error handling, data in RRDP snapshot and delt... | 7.5 - HIGH | 2022-09-13 | 2023-11-07 |
| CVE-2021-43174 json | NLnet Labs Routinator versions 0.9.0 up to and including 0.10.1, support the gzip transfer encoding when querying RRDP reposi... | 7.5 - HIGH | 2021-11-09 | 2022-04-04 |
| CVE-2021-43173 json | In NLnet Labs Routinator prior to 0.10.2, a validation run can be delayed significantly by an RRDP repository by not answerin... | 7.5 - HIGH | 2021-11-09 | 2022-08-09 |
| CVE-2021-43172 json | NLnet Labs Routinator prior to 0.10.2 happily processes a chain of RRDP repositories of infinite length causing it to never f... | 7.5 - HIGH | 2021-11-09 | 2022-04-25 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Nlnetlabs | Routinator | 0.7.1 | |||
| Application | Nlnetlabs | Routinator | 0.7.1 | |||
| Application | Nlnetlabs | Routinator | 0.7.1 | |||
| Application | Nlnetlabs | Routinator | 0.7.0 | |||
| Application | Nlnetlabs | Routinator | 0.7.0 | |||
| Application | Nlnetlabs | Routinator | 0.7.0 | |||
| Application | Nlnetlabs | Routinator | 0.7.0 | |||
| Application | Nlnetlabs | Routinator | 0.6.4 | |||
| Application | Nlnetlabs | Routinator | 0.6.3 | |||
| Application | Nlnetlabs | Routinator | 0.6.2 | |||
| Application | Nlnetlabs | Routinator | 0.6.1 | |||
| Application | Nlnetlabs | Routinator | 0.6.0 | |||
| Application | Nlnetlabs | Routinator | 0.5.0 | |||
| Application | Nlnetlabs | Routinator | 0.4.0 | |||
| Application | Nlnetlabs | Routinator | 0.3.3 | |||
| Application | Nlnetlabs | Routinator | 0.3.2 | |||
| Application | Nlnetlabs | Routinator | 0.3.1 | |||
| Application | Nlnetlabs | Routinator | 0.3.0 | |||
| Application | Nlnetlabs | Routinator | 0.2.1 | |||
| Application | Nlnetlabs | Routinator | 0.2.0 |