PatchSiren

decolua CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH decolua CVE published 2026-07-15

CVE-2026-62312

CVE-2026-62312 is a high-severity vulnerability in 9Router, an AI router & token saver. The issue allows remote authenticated attackers to execute arbitrary code on the host operating system. This is achieved by combining a Host header bypass of localhost-only routes with unvalidated MCP plugin arguments passed to child_process.spawn(). Malicious custom plugins can exploit this to execute commands through [truncated]

MEDIUM decolua CVE published 2026-07-15

CVE-2026-56678

CVE-2026-56678 is a vulnerability in 9Router, an AI router & token saver. Prior to version 0.5.6, the Kiro API-key validation endpoint POST /api/oauth/kiro/api-key was vulnerable to a user-controlled region value, allowing an authenticated attacker to supply a crafted region and cause 9Router to send the Kiro validation request to an attacker-controlled host while forwarding the submitted Kiro API key as [truncated]

HIGH decolua CVE published 2026-07-15

CVE-2026-49353

The CVE record for CVE-2026-49353 was published on 2026-07-15T21:16:53.870Z and has not been modified since then. The NVD entry is currently Deferred. This vulnerability affects 9Router AI router & token saver version 0.4.45 and earlier, allowing header spoofing in reverse proxy or tunnel deployments. The vulnerability has a CVSS score of 7.5 and a severity of HIGH.

CRITICAL decolua CVE published 2026-07-15

CVE-2026-49352

CVE-2026-49352 is a critical vulnerability in 9Router, an AI router & token saver. A hardcoded fallback JWT secret was used from version 0.2.21 until 0.4.44, enabling attackers to forge an auth_token cookie when JWT_SECRET was unset. This issue was fixed in version 0.4.44. The vulnerability allows for potential attacks on authentication mechanisms. Users of affected versions should apply the fix and revie [truncated]

CRITICAL decolua CVE published 2026-07-15

CVE-2026-46339

The CVE record for CVE-2026-46339 was published on 2026-07-15T21:16:50.067Z and has not been modified since then. The NVD entry is currently Deferred. This critical vulnerability affects 9Router AI router & token saver versions 0.4.30 through 0.4.36, allowing unauthenticated registration of custom plugins and command execution through the MCP bridge. The vulnerability is fixed in version 0.4.37. Users of [truncated]

HIGH decolua CVE published 2026-07-13

CVE-2026-62328

CVE-2026-62328 is an unauthenticated information disclosure vulnerability in 9Router through version 0.4.41. The vulnerability allows remote attackers to access sensitive user data by sending requests to unprotected API endpoints. Attackers can enumerate paginated request logs and retrieve complete AI conversation histories, including system prompts, user messages, assistant responses, tool calls, and use [truncated]

CRITICAL decolua CVE published 2026-07-13

CVE-2026-62327

CVE-2026-62327 is an unauthenticated information disclosure vulnerability in 9Router through version 0.4.41. The vulnerability allows remote attackers to retrieve plaintext API keys for all connected AI provider accounts by sending a single unauthenticated request to the /api/usage/stats endpoint. Attackers can exploit the missing authentication middleware on the Next.js API route to obtain full API key s [truncated]

HIGH decolua CVE published 2026-07-10

CVE-2026-56675

CVE-2026-56675 is a security vulnerability in 9Router, an AI router & token saver. Prior to version 0.5.2, 9router misclassifies external requests as local due to treating loopback requests as trusted, allowing /v1/* access without an API key. This issue is fixed in version 0.5.2. The vulnerability has a high CVSS score of 8.3 and is classified as HIGH severity. Users of 9Router AI Router & Token Saver sh [truncated]

HIGH decolua CVE published 2026-07-10

CVE-2026-55641

CVE-2026-55641 is a HIGH severity vulnerability in 9Router, an AI router & token saver. The vulnerability allows a remote unauthenticated attacker to bypass API-key authentication by sending a crafted Host header, exposing /v1 proxy to upstream provider calls using stored provider credentials. This issue is fixed in version 0.5.2. Affected product deployments should be reviewed for exposure and updated to [truncated]

HIGH decolua CVE published 2026-07-10

CVE-2026-55638

CVE-2026-55638 is a security vulnerability in 9Router, an AI router & token saver. The vulnerability allows a remote unauthenticated attacker to bypass the API-key gate and cause the server to make upstream provider calls using operator-stored LLM provider credentials. This issue is fixed in version 0.5.2. Affected product deployments should be reviewed for exposure, and owners should prioritize updates o [truncated]

HIGH decolua CVE published 2026-07-10

CVE-2026-56676

CVE-2026-56676 is a high-severity vulnerability in 9Router, an AI router & token saver. Prior to version 0.5.2, 9router validates image URLs by resolving the host before fetching, but open-sse/translator/concerns/image.js performs the later server-side image fetch with a separate DNS resolution. An authenticated attacker with access to the LLM proxy can use a vision-capable model and an attacker-controlle [truncated]

HIGH decolua CVE published 2026-07-10

CVE-2026-55501

CVE-2026-55501 is a HIGH severity vulnerability in 9Router, an AI router & token saver. The dashboard login rate limiter can be bypassed due to improper client identity derivation from the attacker-controlled X-Forwarded-For HTTP header. This allows a remote attacker to perform unlimited brute-force attempts against the dashboard password. The issue is fixed in version 0.4.80. Affected organizations shoul [truncated]

CRITICAL decolua CVE published 2026-07-10

CVE-2026-55500

CVE-2026-55500 is a critical vulnerability in 9Router AI router & token saver, with a CVSS score of 9.9. The vulnerability exists in the /api/settings/database endpoint, which allows full database export and import without authentication, beyond a middleware check. This issue was fixed in version 0.4.80. Affected users, especially those using versions prior to 0.4.80, should be aware of this critical vuln [truncated]

CRITICAL decolua CVE published 2026-07-07

CVE-2026-59800

The CVE record for CVE-2026-59800 was published on 2026-07-07T19:16:55.260Z and has not been modified since then. The NVD entry is currently available. This vulnerability is an OS command injection vulnerability in 9Router before 0.4.44, which exists in the unauthenticated POST /api/tunnel/tailscale-install endpoint. The sudoPassword field from the request body is written to the stdin of a 'sudo -S sh' ch [truncated]

MEDIUM decolua CVE published 2026-06-01

CVE-2026-10269

A medium-severity improper authorization vulnerability in decolua 9router's HTTP Header Handler allows remote attackers to bypass authentication by manipulating the Host header in requests to the isAuthenticated function within src/dashboardGuard.js. The flaw exists in versions up to and including 0.4.0. A fix is available in version 0.4.1 via commit 428e2c045cb9c0eb8080e8b580471a9c2eaa95ca. The vulnerabi [truncated]