Critical severity9.1NVD Advisory· Published May 13, 2026· Updated May 15, 2026
CVE-2026-44193
CVE-2026-44193
Description
OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.7, the XMLRPC method opnsense.restore_config_section fails to sanitize user supplied input leading to Remote Code Execution. This vulnerability is fixed in 26.1.7.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- github.com/opnsense/core/security/advisories/GHSA-xxp9-93cr-x54pnvdExploitVendor Advisory
News mentions
0No linked articles in our index yet.