EIP-2026-117760

PRE-CVE

Pelco VideoXpert 1.12.105 - Local Privilege Escalation

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117760. PoCs published by LiquidWorm.

AI-analyzed exploit summary The writeup describes privilege escalation vulnerabilities in Schneider Electric Pelco VideoXpert due to improper file permissions and unquoted service paths, allowing local users to replace binaries and gain SYSTEM privileges.

Description

Pelco VideoXpert 1.12.105 - Local Privilege Escalation

Exploits (1)

exploitdb WRITEUP
by LiquidWorm · textlocalwindows
https://www.exploit-db.com/exploits/42310

The writeup describes privilege escalation vulnerabilities in Schneider Electric Pelco VideoXpert due to improper file permissions and unquoted service paths, allowing local users to replace binaries and gain SYSTEM privileges.

Classification
Writeup 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Schneider Electric Pelco VideoXpert Core Software 1.12.105, Media Gateway Software 1.12.26, Exports 1.12
Auth required
Prerequisites: Local user access · Ability to write to vulnerable file paths
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026