Primary

Context

Routinator RRDP Processing Denial-of-Service Vulnerability

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Routinator versions prior to and including 0.15.1. When the application processes a file received via the Repository Remediation and Distribution Protocol (RRDP) that contains a specially crafted Document Type Definition (DTD), Routinator crashes.

Impact

Exploitation of this vulnerability leads to a crash of the Routinator application, causing a denial-of-service condition.

Remediation

Users can upgrade to Routinator version 0.15.2 or later to address this vulnerability.

Added: Jun 8, 2026, 3:26 PM

Updated: Jun 8, 2026, 3:26 PM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

2.5

exploitability

7.8

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

2.5

exploitability

7.8

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Routinator RRDP Processing Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

NLnet Labs Routinator

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating