A vulnerability identified as critical has been detected in openwrt luci. This affects an unknown function of the component DHCPv6 Lease Renderer. This manipulation of the argument fqdn causes injection.
The identification of this vulnerability is CVE-2026-61876. It is possible to initiate the attack remotely. There is no exploit available.