Critical severity9.1NVD Advisory· Published May 13, 2026· Updated May 15, 2026
CVE-2026-45158
CVE-2026-45158
Description
OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.8, unsanitized user input is passed to the DHCP configuration of the configured interface, which is processed by a shell script, allowing remote code execution as root on the underlying operating system. This vulnerability is fixed in 26.1.8.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/opnsense/core/security/advisories/GHSA-5rx3-w735-74wmnvdVendor Advisory
News mentions
0No linked articles in our index yet.