EIP-2026-103149

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103149. PoCs published by LiquidWorm.

AI-analyzed exploit summary This is a detailed technical writeup describing a hardcoded credentials vulnerability in Iris ID IrisAccess iCAM4000/iCAM7000 devices. The analysis includes code snippets from the JAR file and FTP configuration, demonstrating the presence of the 'rou' account with password 'iris4000' and its privileges.

Description

Iris ID IrisAccess iCAM4000/iCAM7000 - Hard-Coded Credentials Remote Shell Access

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textremotelinux

https://www.exploit-db.com/exploits/40167

View Code ZIP pw:eip

This is a detailed technical writeup describing a hardcoded credentials vulnerability in Iris ID IrisAccess iCAM4000/iCAM7000 devices. The analysis includes code snippets from the JAR file and FTP configuration, demonstrating the presence of the 'rou' account with password 'iris4000' and its privileges.

Classification

Writeup 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Iris ID IrisAccess iCAM4000 (iCAM Software: 3.09.02, iCAM File system: 1.3, CMR Firmware: 5.5 and 3.8, EIF Firmware: 9.5 and 8.0) and iCAM7000 (iCAM Software: 8.01.07, iCAM File system: 1.4.0, EIF Firmware: 1.9)

No auth needed

Prerequisites: Network access to the device on ports 23 (telnet) or 21 (FTP) · Knowledge of the hardcoded credentials

MITRE ATT&CK

T1078 - Valid Accounts T1110 - Brute Force

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Iris ID IrisAccess iCAM4000/iCAM7000 - Hard-Coded Credentials Remote Shell Access

Exploitation Summary

Description

Exploits (1)

Details