Horizon Alert
Summary of the vulnerability and why it matters
The 9Router AI router has a critical vulnerability in its database settings endpoint that allows unauthorized access to export or import the entire database, which includes sensitive credentials and tokens. This issue affects versions prior to 0.4.80 and has been addressed in version 0.4.80.
- Unauthenticated access to sensitive router data.
- Potential for complete system compromise and data theft.
- Verify if this AI router is deployed in your environment.
Attack Path
How an attacker could exploit the issue
An attacker with low-privileged access could interact with the `/api/settings/database` endpoint to export sensitive information or import malicious data, potentially leading to a complete system compromise. The vulnerability exists because the endpoint's protection relies solely on a token check rather than a robust authentication and authorization mechanism.
- Requires low-privileged access.
- Triggered by API endpoint access.
- Leads to full system compromise.
Live Threat
Current exploitation, exposure, and threat context
This vulnerability could allow an unauthenticated attacker to export the entire database, potentially exposing sensitive credentials, API keys, and OAuth tokens, or to import a malicious database, overwriting existing configurations. This impacts systems where the /api/settings/database endpoint is accessible.
- Sensitive credentials and keys at risk.
- Unauthenticated access to API endpoint.
- Complete system configuration compromise.
Operational Fix
Recommended remediation, mitigation, and detection steps
Given that 9Router is an AI router, the platform or infrastructure team responsible for managing network services and the application owner are likely accountable for addressing this vulnerability. The immediate practical first step is to inventory all instances of 9Router, determine their network exposure, confirm business criticality, and identify the specific system owner. Remediation planning should then proceed based on these findings.
- Platform or application owner.
- Verify reachability and criticality.
- Plan and coordinate remediation actions.