EIP-2026-100833

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100833. PoCs published by LiquidWorm.

AI-analyzed exploit summary The exploit demonstrates an unauthenticated remote command execution vulnerability in Iris ID IrisAccess ICU 7000-2 due to unsanitized POST parameters in '/html/SetSmarcardSettings.php' being passed to the exec() PHP function. The provided curl command shows command injection via the 'cmbBook' parameter, resulting in arbitrary command execution as root.

Description

Iris ID IrisAccess ICU 7000-2 - Remote Command Execution

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · textwebappscgi

https://www.exploit-db.com/exploits/40166

View Code ZIP pw:eip

The exploit demonstrates an unauthenticated remote command execution vulnerability in Iris ID IrisAccess ICU 7000-2 due to unsanitized POST parameters in '/html/SetSmarcardSettings.php' being passed to the exec() PHP function. The provided curl command shows command injection via the 'cmbBook' parameter, resulting in arbitrary command execution as root.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Iris ID IrisAccess ICU 7000-2 (ICU Software: 1.00.08, ICU OS: 1.3.8)

No auth needed

Prerequisites: Network access to the target device · The '/html/SetSmarcardSettings.php' endpoint must be accessible

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Iris ID IrisAccess ICU 7000-2 - Remote Command Execution

Exploitation Summary

Description

Exploits (1)

Details