EIP-2026-117756

PRE-CVE

Pearson Vue VTS 2.3.1911 Installer - 'VUEApplicationWrapper' Unquoted Service Path

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117756. PoCs published by Jok3r.

AI-analyzed exploit summary This exploit leverages an unquoted service path vulnerability in Pearson Vue VTS 2.3.1911, combined with insecure directory permissions, to achieve local privilege escalation. The PoC downloads a malicious executable to the vulnerable directory and triggers execution via a system reboot.

Description

Pearson Vue VTS 2.3.1911 Installer - 'VUEApplicationWrapper' Unquoted Service Path

Exploits (1)

exploitdb WORKING POC

by Jok3r · textlocalwindows

https://www.exploit-db.com/exploits/48810

View Code ZIP pw:eip

This exploit leverages an unquoted service path vulnerability in Pearson Vue VTS 2.3.1911, combined with insecure directory permissions, to achieve local privilege escalation. The PoC downloads a malicious executable to the vulnerable directory and triggers execution via a system reboot.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Pearson Vue VTS 2.3.1911

Auth required

Prerequisites: Local access to the system · Ability to write to the vulnerable directory · System reboot required for execution

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026