A vulnerability classified as problematic has been found in RURBAN Cpanel::JSON::XS up to 4.40 on Perl. Impacted is the function decode_json . The manipulation leads to release of reference. This vulnerability is uniquely identified as CVE-2026-9516 . The attack is possible to be carried out remotely. No exploit exists. It is recommended to upgrade the affected component.