EIP-2026-104140

PRE-CVE

Zend Java Bridge - Remote Code Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104140. PoCs published by ikki.

AI-analyzed exploit summary This Java-based exploit targets the Zend Java Bridge v3.1, leveraging a remote code execution vulnerability (ZDI-11-113) by crafting malicious serialized data to instantiate a Java Runtime object and execute arbitrary commands. The exploit communicates with the vulnerable service on port 10001/tcp and demonstrates full RCE capability.

Description

Zend Java Bridge - Remote Code Execution

Exploits (1)

exploitdb WORKING POC VERIFIED

by ikki · javaremotemultiple

https://www.exploit-db.com/exploits/17078

View Code ZIP pw:eip

This Java-based exploit targets the Zend Java Bridge v3.1, leveraging a remote code execution vulnerability (ZDI-11-113) by crafting malicious serialized data to instantiate a Java Runtime object and execute arbitrary commands. The exploit communicates with the vulnerable service on port 10001/tcp and demonstrates full RCE capability.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Zend Server v5.0.2 and earlier (Zend Java Bridge component)

No auth needed

Prerequisites: Network access to the target's Zend Java Bridge service (default port 10001/tcp) · Vulnerable version of Zend Server with Java Bridge enabled

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026