EIP-2026-117361

PRE-CVE

IVPN Client 2.6.1 - Local Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117361. PoCs published by Kacper Szurek.

AI-analyzed exploit summary This exploit leverages a privilege escalation vulnerability in IVPN Client for Windows by injecting a custom OpenVPN configuration file with a malicious `--up` directive to execute arbitrary commands as SYSTEM. The PoC sends a crafted JSON payload via a local socket to trigger the vulnerability.

Description

IVPN Client 2.6.1 - Local Privilege Escalation

Exploits (1)

exploitdb WORKING POC

by Kacper Szurek · pythonlocalwindows

https://www.exploit-db.com/exploits/41265

View Code ZIP pw:eip

This exploit leverages a privilege escalation vulnerability in IVPN Client for Windows by injecting a custom OpenVPN configuration file with a malicious `--up` directive to execute arbitrary commands as SYSTEM. The PoC sends a crafted JSON payload via a local socket to trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: IVPN Client for Windows 2.6.6120.33863

Auth required

Prerequisites: Local access to the target system · IVPN Client installed and running · Valid IVPN credentials

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.002 - Bypass User Account Control

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026