CVE-2026-44193 | OPNsense up to 26.1.6 XMLRPC opnsense.restore_config_section argument injection (GHSA-xxp9-93cr-x54p)

A vulnerability was found in OPNsense up to 26.1.6 and classified as critical. This issue affects the function opnsense.restore_config_section of the component XMLRPC. Such manipulation leads to argument injection.

This vulnerability is uniquely identified as CVE-2026-44193. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More