EIP-2026-118167

PRE-CVE

Workspace ONE Intelligent Hub 20.3.8.0 - 'VMware Hub Health Monitoring Service' Unquoted Service Path

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118167. PoCs published by Ismael Nava.

AI-analyzed exploit summary This is a writeup detailing an unquoted service path vulnerability in VMware Workspace ONE Intelligent Hub. The vulnerability allows local privilege escalation due to improper handling of spaces in the service path.

Description

Workspace ONE Intelligent Hub 20.3.8.0 - 'VMware Hub Health Monitoring Service' Unquoted Service Path

Exploits (1)

exploitdb WRITEUP

by Ismael Nava · textlocalwindows

https://www.exploit-db.com/exploits/50028

View Code ZIP pw:eip

This is a writeup detailing an unquoted service path vulnerability in VMware Workspace ONE Intelligent Hub. The vulnerability allows local privilege escalation due to improper handling of spaces in the service path.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: VMware Workspace ONE Intelligent Hub 20.3.8.0

Auth required

Prerequisites: Local access to the target system · Ability to write to a directory in the service path

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026