An issue was discovered in NLnet Labs Routinator 0.1.0 through 0.7.1. It allows remote attackers to bypass intended access restrictions or to cause a denial of service on dependent routing systems by strategically withholding RPKI Route Origin Authorisation “.roa” files or X509 Certificate Revocation List files from the RPKI relying party’s view.
CPE | Name | Operator | Version |
---|---|---|---|
routinator | ge | 0.1.0 | |
routinator | le | 0.7.1 |