EIP-2026-100058

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100058. PoCs published by Google Security Research.

AI-analyzed exploit summary This is a detailed technical analysis of a buffer overflow vulnerability in the TSP touchscreen controller driver, specifically in the 'cmd_store' function. The writeup explains how the vulnerability allows for memory corruption and control flow hijacking, with a high-level description of a ROP chain for arbitrary kernel function execution.

Description

Google Android TSP sysfs - 'cmd_store' Multiple Overflows

Exploits (1)

exploitdb WRITEUP VERIFIED

by Google Security Research · textlocalandroid

https://www.exploit-db.com/exploits/41130

View Code ZIP pw:eip

This is a detailed technical analysis of a buffer overflow vulnerability in the TSP touchscreen controller driver, specifically in the 'cmd_store' function. The writeup explains how the vulnerability allows for memory corruption and control flow hijacking, with a high-level description of a ROP chain for arbitrary kernel function execution.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Complex

Reliability

Theoretical

Target: Linux kernel (TSP touchscreen controller driver)

Auth required

Prerequisites: Access to the 'cmd' sysfs entry · Appropriate SELinux context (e.g., system_app, rild)

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Google Android TSP sysfs - 'cmd_store' Multiple Overflows

Exploitation Summary

Description

Exploits (1)

Details