EIP-2026-103777

PRE-CVE

HyperVM - File Permissions Credential Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103777. PoCs published by Xia Shing Zee.

AI-analyzed exploit summary This writeup details an information disclosure vulnerability in HyperVM/Kloxo where backup files in /tmp are world-readable, exposing root passwords, private keys, and other sensitive data. The exploitation involves restoring a backup and accessing the temporary files before they are deleted.

Description

HyperVM - File Permissions Credential Disclosure

Exploits (1)

exploitdb WRITEUP VERIFIED

by Xia Shing Zee · textlocalmultiple

https://www.exploit-db.com/exploits/9520

View Code ZIP pw:eip

This writeup details an information disclosure vulnerability in HyperVM/Kloxo where backup files in /tmp are world-readable, exposing root passwords, private keys, and other sensitive data. The exploitation involves restoring a backup and accessing the temporary files before they are deleted.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: HyperVM/Kloxo

Auth required

Prerequisites: Access to HyperVM/Kloxo interface · Ability to restore a backup

MITRE ATT&CK

T1082 - System Information Discovery T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026