๐Ÿ” CVE Alert

CVE-2026-55641

HIGH 8.2

9router: Unauthenticated `/v1` proxy access via `Host`-header spoofing โ†’ open AI relay + SSRF

CVSS Score
8.2
EPSS Score
0.0%
EPSS Percentile
0th

9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is local by reading the client-controlled Host header, allowing a remote unauthenticated attacker to send Host: localhost and bypass API-key authentication. In the default configuration, this exposes the /v1 proxy to upstream provider calls using stored provider credentials and allows /v1/search with the searxng provider_options.baseUrl parameter to drive server-side requests to internal or cloud-metadata hosts. This issue is fixed in version 0.5.2.

CWE CWE-290 CWE-348 CWE-918 CWE-1327
Vendor decolua
Product 9router
Published Jul 10, 2026
Last Updated Jul 10, 2026
Stay Ahead of the Next One

Get instant alerts for decolua 9router

Be the first to know when new high vulnerabilities affecting decolua 9router are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
Low
Availability
None

Affected Versions

decolua / 9router
< 0.5.2

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/decolua/9router/security/advisories/GHSA-86m2-fcxq-5q7c github.com: https://github.com/decolua/9router/commit/b282f0554972ea35281520738759d76abcd0b0b3 github.com: https://github.com/decolua/9router/releases/tag/v0.5.2