PT-2026-23128 · Idc · Idc Sfx2100
Abdul Mhanni
·
Published
2026-03-05
·
Updated
2026-03-09
·
CVE-2026-29127
CVSS v4.0
9.2
Critical
| Vector | AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N |
Name of the Vulnerable Software and Affected Versions
IDC SFX2100 versions (affected versions not specified)
Description
The IDC SFX2100 Satellite Receiver has overly permissive file system permissions set on the
monitor user's home directory. The directory is configured with permissions 0777, granting read, write, and execute access to all local users on the system. This may lead to local privilege escalation depending on system conditions, due to the presence of highly privileged processes and binaries within the affected directory.Recommendations
Restrict file system permissions on the
monitor user's home directory to a more secure configuration.Exploit
Fix
LPE
Incorrect Authorization
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Idc Sfx2100