CVE-2026-9495 Blast Radius

HIGH • CVSS 7.3Versions of the package @koa/router from 14.0.0 and before 15.0.0 are vulnerable to Access Control Bypass due to the middleware being silently dropped

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-9495.

Start Free Scan →← Back to CVE-2026-9495