CVE-2021-41531

CVE-2021-41531: Invalid RPKI data could disable Route Origin Validation on RTR clients.

Vendor Nlnet Labs
Product Routinator
Weakness CWE-1288
Published September 21, 2021
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

NLnet Labs Routinator prior to 0.10.0 produces invalid RTR payload if an RPKI CA uses too large values in the max-length parameter in a ROA. This will lead to RTR clients such as routers to reject the RPKI data set, effectively disabling Route Origin Validation.

Key dates

02Disclosure timeline

September 21, 2021 CVE published
September 16, 2024 Record updated