GHSA-gc6q-cwcj-3vh9HighCVSS 7.5

Routinator crashes when sending a maliciously crafted select-asn query parameter

Published
June 8, 2026
Last Modified
June 12, 2026

🔗 CVE IDs covered (1)

📋 Description

When sending a specifically crafted non-UTF-8 string as select-asn query parameter to the /api/v1/origins endpoint, Routinator crashes.

This only affects users who allow API access from untrusted networks.

🎯 Affected products1

  • rust/routinator:<= 0.15.1

🔗 References (4)