EIP-2026-103378

PRE-CVE

Murus 1.4.11 - Local Privilege Escalation

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103378. PoCs published by Mark Wadham.

AI-analyzed exploit summary This exploit leverages a local privilege escalation vulnerability in Murus 1.4.11 by replacing the Murus binary with a malicious payload that grants root access. The exploit compiles two C programs: one to set root permissions on a payload and another to execute it, exploiting the application's authentication bypass.

Description

Murus 1.4.11 - Local Privilege Escalation

Exploits (1)

exploitdb WORKING POC
by Mark Wadham · bashlocalmacos
https://www.exploit-db.com/exploits/43217

This exploit leverages a local privilege escalation vulnerability in Murus 1.4.11 by replacing the Murus binary with a malicious payload that grants root access. The exploit compiles two C programs: one to set root permissions on a payload and another to execute it, exploiting the application's authentication bypass.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Murus 1.4.11
Auth required
Prerequisites: Admin access to modify /Applications/ · Murus 1.4.11 installed · Compiler tools (gcc) available
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026