CVE-2024-27460

MEDIUM

Plantronics Hub <3.25.1 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2024-27460. PoCs published by xct, Alaatk, 10cks.

AI-analyzed exploit summary This exploit leverages a race condition in Windows MSI installer (CVE-2024-27460) to achieve local privilege escalation by manipulating directory junctions and oplocks to overwrite a rollback script with malicious content.

Description

A privilege escalation exists in the updater for Plantronics Hub 3.25.1 and below.

Exploits (3)

nomisec WORKING POC 37 stars

by xct · poc

https://github.com/xct/CVE-2024-27460

View Code ZIP pw:eip

This exploit leverages a race condition in Windows MSI installer (CVE-2024-27460) to achieve local privilege escalation by manipulating directory junctions and oplocks to overwrite a rollback script with malicious content.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Complex

Reliability

Racy

Target: Windows MSI Installer (specific version not specified)

No auth needed

Prerequisites: Local access to the target system · Ability to create directories and files in C:\

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.002 - Bypass User Account Control

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WRITEUP 4 stars

by Alaatk · poc

https://github.com/Alaatk/CVE-2024-27460

View Code ZIP pw:eip

This repository provides a writeup for CVE-2024-27460, detailing a privilege escalation and arbitrary file read vulnerability in HP Plantronics Hub 3.25.1. The exploit involves manipulating a configuration file to read arbitrary files as SYSTEM.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: HP Plantronics Hub 3.25.1

Auth required

Prerequisites: Authenticated user access · HP Plantronics Hub 3.25.1 installed

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1005 - Data from Local System

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec STUB

by 10cks · poc

https://github.com/10cks/CVE-2024-27460-installer

View Code ZIP pw:eip

The repository contains only a README.md file with minimal content, providing no functional exploit code or technical details for CVE-2024-27460.

Classification

Stub 10%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory

https://support.hp.com/us-en/document/ish_9869257-9869285-16/hpsbpy03895

Scores

CVSS v3 6.7

EPSS 0.0167

EPSS Percentile 73.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-266

Status published

Products (1)

hp/poly_plantronics_hub < 3.25.1

Published May 14, 2024

Tracked Since Feb 18, 2026