EIP-2026-101718

PRE-CVE

ESC 8832 Data Controller - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101718. PoCs published by Balazs Makany.

AI-analyzed exploit summary This Metasploit auxiliary module scans for active and hijackable sessions on the ESC 8832 Data Controller by iterating through predictable session IDs. It confirms vulnerabilities in session handling but does not exploit them for RCE or other offensive actions.

Description

ESC 8832 Data Controller - Multiple Vulnerabilities

Exploits (1)

exploitdb SCANNER

by Balazs Makany · rubywebappshardware

https://www.exploit-db.com/exploits/37154

View Code ZIP pw:eip

This Metasploit auxiliary module scans for active and hijackable sessions on the ESC 8832 Data Controller by iterating through predictable session IDs. It confirms vulnerabilities in session handling but does not exploit them for RCE or other offensive actions.

Classification

Scanner 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: ESC 8832 Data Controller Hardware

No auth needed

Prerequisites: Network access to the target device · Predictable session ID generation

MITRE ATT&CK

T1189 - Drive-by Compromise T1557 - Adversary-in-the-Middle

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026