EIP-2026-103346
PRE-CVEZoom Meeting Connector 4.6.239.20200613 - Remote Root Exploit (Authenticated)
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-103346. PoCs published by Jeremy Brown.
AI-analyzed exploit summary This exploit leverages a command injection vulnerability in Zoom Meeting Connector 4.6.239.20200613 via the Proxy Password field, allowing authenticated remote code execution as root through a cron job that executes `/etc/profile.d/proxy.sh`.
Description
Zoom Meeting Connector 4.6.239.20200613 - Remote Root Exploit (Authenticated)
Exploits (1)
exploitdb
WORKING POC
by Jeremy Brown · pythonwebappslinux
https://www.exploit-db.com/exploits/49360
This exploit leverages a command injection vulnerability in Zoom Meeting Connector 4.6.239.20200613 via the Proxy Password field, allowing authenticated remote code execution as root through a cron job that executes `/etc/profile.d/proxy.sh`.
Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target:
Zoom Meeting Connector 4.6.239.20200613
Auth required
Prerequisites:
Valid credentials for the Zoom Meeting Connector web console · Network access to port 5480
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026