PT-2026-22882 · Idc · Idc Sfx Series Superflex(Sfx2100) Satellitereceiver

Abdul Mhanni

Publicado

2026-03-04

Atualizado

2026-03-05

CVE-2026-29119

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IDC SFX Series SuperFlex(SFX2100) SatelliteReceiver (affected versions not specified)

Description The IDC SFX Series SuperFlex(SFX2100) SatelliteReceiver contains hardcoded and insecure credentials for the admin account. A remote, unauthenticated attacker can exploit this to access the satellite system directly via the Telnet service, potentially compromising the system. The credentials allow direct access without authentication.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Using Hardcoded Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-798

Identificadores relacionados

CVE-2026-29119

Produtos afetados

Idc Sfx Series Superflex(Sfx2100) Satellitereceiver

PT-2026-22882 · Idc · Idc Sfx Series Superflex(Sfx2100) Satellitereceiver

CVE-2026-29119

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7