Chasing the OPNsense RCE: The Story Behind My First CVEs hackerask.com 18 points by HackerAsk 3 days ago
bill_mcgonigle 2 days ago For those wondering this gives full system compromise to an authenticated user with permissions to edit the firewall, AIUI.Nasty but I was expecting a remote unauthenticated attack at 9.9. Hopefully you don't allow admin on WAN!Thanks for finding the bugs and writing about the design pattern problem, HackerAsk.
pizzalife 2 days ago Why did you not mention LLM use in the post at all?Are you not using LLMs as part of your toolkit in 2026?
For those wondering this gives full system compromise to an authenticated user with permissions to edit the firewall, AIUI.
Nasty but I was expecting a remote unauthenticated attack at 9.9. Hopefully you don't allow admin on WAN!
Thanks for finding the bugs and writing about the design pattern problem, HackerAsk.
Why did you not mention LLM use in the post at all?
Are you not using LLMs as part of your toolkit in 2026?