PatchSiren cyber security CVE debrief
CVE-2026-49353 decolua CVE debrief
The CVE record for CVE-2026-49353 was published on 2026-07-15T21:16:53.870Z and has not been modified since then. The NVD entry is currently Deferred. This vulnerability affects 9Router AI router & token saver version 0.4.45 and earlier, allowing header spoofing in reverse proxy or tunnel deployments. The vulnerability has a CVSS score of 7.5 and a severity of HIGH.
- Vendor
- decolua
- Product
- 9router
- CVSS
- HIGH 7.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-15
- Original CVE updated
- 2026-07-16
- Advisory published
- 2026-07-15
- Advisory updated
- 2026-07-16
Who should care
Users of 9Router AI router & token saver version 0.4.45 and earlier should be aware of this vulnerability and take necessary actions to protect their systems. This includes updating to a version that fixes this vulnerability, reviewing and adjusting configurations for reverse proxy or tunnel deployments, and monitoring systems for potential exploitation attempts. Operators, administrators, and security teams responsible for 9Router AI router & token saver deployments should prioritize this vulnerability.
Technical summary
In 9Router AI router & token saver version 0.4.45 and earlier, the src/dashboardGuard.js local-only access gate used Host and Origin headers in isLocalRequest() to protect /api/mcp/*, /api/tunnel/*, and /api/cli-tools/*, allowing header spoofing in reverse proxy or tunnel deployments to reach MCP child process stdin paths. This vulnerability can be exploited by spoofing the Host and Origin headers, potentially allowing attackers to access sensitive information or execute arbitrary code.
Defensive priority
High priority should be given to updating 9Router AI router & token saver to a version that fixes this vulnerability and reviewing configurations for reverse proxy or tunnel deployments.
Recommended defensive actions
- Update 9Router AI router & token saver to version 0.4.46 or later
- Review and adjust configurations for reverse proxy or tunnel deployments
- Monitor systems for potential exploitation attempts
- Verify affected scope and vendor guidance
- Review compensating controls for exposed systems while remediation is scheduled and verified
- Check relevant monitoring, detection, and logs for exposed assets that need extra review
- Track exceptions, retest remediated assets, and close the item only after evidence is documented
Evidence notes
The CVE record and NVD entry provide limited information about this vulnerability. Further investigation and testing may be necessary to fully understand the impact and potential mitigations. The vulnerability affects 9Router AI router & token saver version 0.4.45 and earlier. The src/dashboardGuard.js local-only access gate used Host and Origin headers in isLocalRequest() to protect /api/mcp/*, /api/tunnel/*, and /api/cli-tools/*, allowing header spoofing in reverse proxy or tunnel deployments to reach MCP child process stdin paths. Defenders should verify affected scope and vendor guidance.
Official resources
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-15T21:16:53.870Z and has not been modified since then. The NVD entry is currently Deferred.