EIP-2026-100859

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100859. PoCs published by Procheckup.

AI-analyzed exploit summary This is a vulnerability writeup describing an unauthenticated command execution flaw in Mitel's AWC (Audio and Web Conferencing) web interface. The PoC demonstrates command injection via URL parameters to execute arbitrary Unix commands.

Description

Mitel AWC - Command Execution

Exploits (1)

exploitdb WRITEUP VERIFIED

by Procheckup · textwebappscgi

https://www.exploit-db.com/exploits/15807

View Code ZIP pw:eip

This is a vulnerability writeup describing an unauthenticated command execution flaw in Mitel's AWC (Audio and Web Conferencing) web interface. The PoC demonstrates command injection via URL parameters to execute arbitrary Unix commands.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Mitel Audio and Web Conferencing (AWC)

No auth needed

Prerequisites: Network access to the target system · Mitel AWC web interface exposed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1202 - Indirect Command Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Mitel AWC - Command Execution

Exploitation Summary

Description

Exploits (1)

Details