EIP-2026-103868

PRE-CVE

Axis Communications MPQT/PACS - Heap Overflow / Information Leakage

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103868. PoCs published by bashis.

AI-analyzed exploit summary This is a detailed technical writeup describing a heap overflow and information leakage vulnerability in Axis Communications MPQT/PACS devices. It includes root cause analysis, affected binaries, and proof-of-concept commands to trigger the vulnerabilities.

Description

Axis Communications MPQT/PACS - Heap Overflow / Information Leakage

Exploits (1)

exploitdb WRITEUP

by bashis · textremotemultiple

https://www.exploit-db.com/exploits/43985

View Code ZIP pw:eip

This is a detailed technical writeup describing a heap overflow and information leakage vulnerability in Axis Communications MPQT/PACS devices. It includes root cause analysis, affected binaries, and proof-of-concept commands to trigger the vulnerabilities.

Classification

Writeup 95%

Attack Type

Info Leak | Dos

Complexity

Moderate

Reliability

Reliable

Target: Axis Communications MPQT/PACS series (firmware versions before v7.30/6.50.1.3 and PACS versions before v1.30.0.2/1.60.0/1.10.0.2/1.65.1)

No auth needed

Prerequisites: Network access to the vulnerable device · Ability to send crafted HTTP requests

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1087 - Account Discovery

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026