EIP-2026-104608

PRE-CVE

Xcode OpenBase 9.1.5 (OSX) - Root File Create Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104608. PoCs published by Kevin Finisterre.

AI-analyzed exploit summary This exploit leverages a directory traversal vulnerability in OpenBase (bundled with Xcode) to create a root-owned file with rw-rw-rw permissions. It then abuses this to inject a malicious crontab entry, leading to a root shell via a compiled binary.

Description

Xcode OpenBase 9.1.5 (OSX) - Root File Create Privilege Escalation

Exploits (1)

exploitdb WORKING POC VERIFIED

by Kevin Finisterre · perllocalosx

https://www.exploit-db.com/exploits/2580

View Code ZIP pw:eip

This exploit leverages a directory traversal vulnerability in OpenBase (bundled with Xcode) to create a root-owned file with rw-rw-rw permissions. It then abuses this to inject a malicious crontab entry, leading to a root shell via a compiled binary.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: OpenBase (versions 7.0.15, 8.0.4, 9.1.5, and Xcode 2.1.2 bundled versions)

No auth needed

Prerequisites: OpenBase installed with vulnerable version · Ability to execute the exploit script on the target system

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1053.003 - Cron T1222 - File and Directory Permissions Modification

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026