CVE-2026-1880

EIP tracks 1 public exploit for CVE-2026-1880. PoCs published by seokjohn.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2026-1880, a TOCTOU (Time-of-Check to Time-of-Use) vulnerability in ASUS DriverHub's update process, leading to local privilege escalation (LPE). The exploit leverages symbolic link manipulation and file operations to achieve elevation of privileges.

An Incorrect Permission Assignment for Critical Resource vulnerability in the ASUS DriverHub update process allows privilege escalation due to improper protection of required execution resources during the validation phase, permitting a local user to make unprivileged modifications. This allows the altered resource to pass system checks and be executed with elevated privileges upon a user-initiated update. Refer to the 'Security Update for ASUS DriverHub' section on the ASUS Security Advisory for more information.