EIP-2026-117668

PRE-CVE

Native Instruments Service Center 2.2.5 - Local Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117668. PoCs published by LiquidWorm.

AI-analyzed exploit summary The vulnerability involves improper file permissions on ServiceCenter.exe and Reloader.exe, allowing any user to replace these executables with malicious binaries. This leads to local privilege escalation when the service runs with elevated privileges.

Description

Native Instruments Service Center 2.2.5 - Local Privilege Escalation

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textlocalwindows

https://www.exploit-db.com/exploits/15584

View Code ZIP pw:eip

The vulnerability involves improper file permissions on ServiceCenter.exe and Reloader.exe, allowing any user to replace these executables with malicious binaries. This leads to local privilege escalation when the service runs with elevated privileges.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Native Instruments Service Center 2.2.5 (R596)

No auth needed

Prerequisites: Local access to the system · ServiceCenter.exe and Reloader.exe installed with insecure permissions

MITRE ATT&CK

T1548.002 - Bypass User Account Control T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026