EIP-2026-100055

PRE-CVE

Google Android - 'sensord' Local Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100055. PoCs published by s0m3b0dy.

AI-analyzed exploit summary This exploit targets a vulnerability in the Android sensord daemon, which fails to validate symlinks for FIFO files, allowing an attacker to manipulate file permissions and escalate privileges. The exploit modifies the ext4 superblock to set the SUID bit on /system/bin/mksh, achieving local privilege escalation.

Description

Google Android - 'sensord' Local Privilege Escalation

Exploits (1)

exploitdb WORKING POC

by s0m3b0dy · c++localandroid

https://www.exploit-db.com/exploits/39340

View Code ZIP pw:eip

This exploit targets a vulnerability in the Android sensord daemon, which fails to validate symlinks for FIFO files, allowing an attacker to manipulate file permissions and escalate privileges. The exploit modifies the ext4 superblock to set the SUID bit on /system/bin/mksh, achieving local privilege escalation.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Android sensord daemon (specific versions not specified)

No auth needed

Prerequisites: Device with vulnerable sensord daemon running as root · Access to /data/misc/sensor/ directory · Reboot required between steps

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.001 - Setuid and Setgid

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026