EIP-2026-117662

PRE-CVE

mySCADAPro 7 - Local Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117662. PoCs published by Karn Ganeshen.

AI-analyzed exploit summary This is a technical writeup detailing an unquoted search path vulnerability in mySCADA Pro v7 services, which could allow local privilege escalation (LPE) due to insecure service paths. The analysis lists affected services and their paths, explaining the conditions required for exploitation.

Description

mySCADAPro 7 - Local Privilege Escalation

Exploits (1)

exploitdb WRITEUP

by Karn Ganeshen · textlocalwindows

https://www.exploit-db.com/exploits/40173

View Code ZIP pw:eip

This is a technical writeup detailing an unquoted search path vulnerability in mySCADA Pro v7 services, which could allow local privilege escalation (LPE) due to insecure service paths. The analysis lists affected services and their paths, explaining the conditions required for exploitation.

Classification

Writeup 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: mySCADA Pro v7

Auth required

Prerequisites: Local user access · Ability to place executable in system root path

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026