EIP-2026-101685

PRE-CVE

ECOA Building Automation System - Remote Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101685. PoCs published by Neurogenesia.

AI-analyzed exploit summary The exploit demonstrates a privilege escalation vulnerability in ECOA Building Automation System where user passwords are exposed in plain-text via the useredt.jsp page. It includes a curl command to retrieve sensitive credentials, confirming the flaw.

Description

ECOA Building Automation System - Remote Privilege Escalation

Exploits (1)

exploitdb WORKING POC

by Neurogenesia · textwebappshardware

https://www.exploit-db.com/exploits/50284

View Code ZIP pw:eip

The exploit demonstrates a privilege escalation vulnerability in ECOA Building Automation System where user passwords are exposed in plain-text via the useredt.jsp page. It includes a curl command to retrieve sensitive credentials, confirming the flaw.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: ECOA Building Automation System (various versions including ECS Router Controller, RiskBuster System, etc.)

Auth required

Prerequisites: Valid session cookie (JSESSIONID) · Access to the useredt.jsp endpoint

MITRE ATT&CK

T1069.002 - Domain Groups T1552.001 - Credentials In Files

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026