EIP-2026-103893

PRE-CVE

Digipass Go3 - Insecure Encryption

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103893. PoCs published by faypou.

AI-analyzed exploit summary This exploit demonstrates a brute-force attack against the insecure encryption algorithm used by Digipass Go3 devices. It includes functional code to derive encryption keys and generate OTPs, leveraging OpenSSL for cryptographic operations.

Description

Digipass Go3 - Insecure Encryption

Exploits (1)

exploitdb WORKING POC VERIFIED

by faypou · cremotemultiple

https://www.exploit-db.com/exploits/28987

View Code ZIP pw:eip

This exploit demonstrates a brute-force attack against the insecure encryption algorithm used by Digipass Go3 devices. It includes functional code to derive encryption keys and generate OTPs, leveraging OpenSSL for cryptographic operations.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Digipass Go3

No auth needed

Prerequisites: Access to the target device's encrypted data · Knowledge of the device's serial number and other key parameters

MITRE ATT&CK

T1110 - Brute Force

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026