CVE-2026-49232

UNKNOWN 0.0

Routinator exits when accepting an incoming HTTP or RTR connection fails

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Routinator exits on any error when accepting incoming HTTP or RTR connections, including ones it can recover from such as running out of file descriptors. This condition can be triggered maliciously by an attacker by opening a large number of connections to the HTTP or RTR server. This only affects users that make their HTTP or RTR server available to untrusted networks.

CWE	CWE-755
Vendor	nlnet labs
Product	routinator
Published	Jun 8, 2026
Last Updated	Jun 8, 2026

Stay Ahead of the Next One

Get instant alerts for nlnet labs routinator

Be the first to know when new unknown vulnerabilities affecting nlnet labs routinator are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

NLnet Labs / Routinator

All versions affected

References

NVD ↗ CVE.org ↗ EPSS Data ↗

nlnetlabs.nl: https://www.nlnetlabs.nl/downloads/routinator/CVE-2026-49232.txt

Credits

X41 D-Sec GmbH