CVE-2026-55641 - 9router: Unauthenticated `/v1` proxy access via `Host`-header spoofing → open AI relay + SSRF
CVE ID :CVE-2026-55641 Published : July 10, 2026, 5:16 p.m. | 1 hour, 15 minutes ago Description :9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is local by reading the client-controlled Host header, allowing a remote unauthenticated...