CVE-2026-44195 | OPNsense up to 26.1.6 Username lockout_handler excessive authentication (GHSA-h3vx-4q27-rc42)

A vulnerability has been found in OPNsense up to 26.1.6 and classified as problematic. The affected element is the function lockout_handler of the component Username Handler. Performing a manipulation results in improper restriction of excessive authentication attempts.

This vulnerability is known as CVE-2026-44195. Remote exploitation of the attack is possible. No exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More