diff --git a/gateway/api/views.py b/gateway/api/views.py
index 9ef673b10..c7940429c 100644
--- a/gateway/api/views.py
+++ b/gateway/api/views.py
@@ -11,6 +11,7 @@
 import logging
 import mimetypes
 import os
+import re
 import time
 from typing import Optional
 from wsgiref.util import FileWrapper
@@ -436,6 +437,17 @@ def get_serializer_class(self):
         return self.serializer_class
 
     def get_queryset(self):
+        pk = self.kwargs.get("pk")
+        if pk and not re.match(
+            "^[0-9a-f]{8}-[0-9a-f]{4}-4[0-9a-f]{3}-[89ab][0-9a-f]{3}-[0-9a-f]{12}$",
+            pk,
+            re.IGNORECASE,
+        ):
+            logger.warning(
+                "Invalid job id format id[%s].",
+                pk,
+            )
+            return None
         type_filter = self.request.query_params.get("filter")
         if type_filter:
             if type_filter == "catalog":