EIP-2026-102154

PRE-CVE

Apple iOS - Kernel Stack Memory Disclosure due to Failure to Check copyin Return Value

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102154. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit leverages a race condition in the iOS kernel's exception handling for undefined instructions. By unmapping the page containing the instruction during handling, the kernel fails to copy the instruction bytes, leading to stale stack memory being included in the exception message.

Description

Apple iOS - Kernel Stack Memory Disclosure due to Failure to Check copyin Return Value

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdosios

https://www.exploit-db.com/exploits/45649

View Code ZIP pw:eip

This exploit leverages a race condition in the iOS kernel's exception handling for undefined instructions. By unmapping the page containing the instruction during handling, the kernel fails to copy the instruction bytes, leading to stale stack memory being included in the exception message.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Complex

Reliability

Racy

Target: Apple iOS kernel (tested on iOS 11.3.1, likely affects iOS 12)

No auth needed

Prerequisites: Physical or remote access to a vulnerable iOS device · Ability to execute arbitrary code on the device

MITRE ATT&CK

T1499.004 - Application or System Exploitation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026