EIP-2026-114789

PRE-CVE

Loadbalancer.org Enterprise VA 7.5.2 - Static SSH Key

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-114789. PoCs published by xistence.

AI-analyzed exploit summary This exploit leverages a default SSH private key in Loadbalancer.org Enterprise VA 7.5.2 and below, allowing unauthenticated root access via SSH. The vendor's lockdown script fails to remove the authorized key, enabling persistent access.

Description

Loadbalancer.org Enterprise VA 7.5.2 - Static SSH Key

Exploits (1)

exploitdb WORKING POC

by xistence · textremoteunix

https://www.exploit-db.com/exploits/32371

View Code ZIP pw:eip

This exploit leverages a default SSH private key in Loadbalancer.org Enterprise VA 7.5.2 and below, allowing unauthenticated root access via SSH. The vendor's lockdown script fails to remove the authorized key, enabling persistent access.

Classification

Working Poc 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Loadbalancer.org Enterprise VA 7.5.2 and below

No auth needed

Prerequisites: network access to the target SSH port · SSH client

MITRE ATT&CK

T1078 - Valid Accounts T1021.004 - SSH

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026