CVE-2026-29000
HackTheBox Principal walkthrough
·2188 words·11 mins·
loading
·
loading
A Medium difficulty Linux machine involving a JWT authentication bypass via CVE-2026-29000, credential reuse to gain a foothold as a service account, and SSH certificate forgery using a readable CA private key to escalate to root.