The CVE number for this vulnerability is CVE-2026-49233.

== Summary
Routinator cache path traversal using rogue rsync URIs

== Affected products
Routinator up to and including 0.15.1.

== Description
Routinator does not properly check the module component of rsync URIs, which
are used to create the file system paths for the Routinator cache. This allows
for path traversal by having a module name containing .., potentially
providing an attacker access to the entire Routinator rsync cache.

== Solution
Install Routinator 0.15.2 or later.

== Acknowledgments
We would like to thank X41 D-Sec GmbH for finding the vulnerability.