EIP-2026-116830

PRE-CVE

ATKGFNEXSrv ATKGFNEX 1.0.11.1 - Unquoted Service Path Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116830. PoCs published by Cyril Vallicari.

AI-analyzed exploit summary This is a writeup describing an unquoted service path vulnerability in ASUS ATKGFNEXSrv, which could allow local privilege escalation. The service path lacks quotes, potentially enabling arbitrary code execution with system privileges.

Description

ATKGFNEXSrv ATKGFNEX 1.0.11.1 - Unquoted Service Path Privilege Escalation

Exploits (1)

exploitdb WRITEUP

by Cyril Vallicari · textlocalwindows

https://www.exploit-db.com/exploits/40523

View Code ZIP pw:eip

This is a writeup describing an unquoted service path vulnerability in ASUS ATKGFNEXSrv, which could allow local privilege escalation. The service path lacks quotes, potentially enabling arbitrary code execution with system privileges.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Theoretical

Target: ASUS ATK Package ATKGFNEX 1.0.11.1

Auth required

Prerequisites: Local access to the system · Non-privileged user account

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026