CVE-2026-29120

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-29120
The /root/anaconda-ks.cfg installation configuration file in International Datacasting Corporation (IDC) SFX Series(SFX2100) SuperFlex Satellite Receiver insecurely stores the hardcoded root password hash. The password itself is highly insecure and susceptible to offline dictionary attacks using the rockyou.txt wordlist. Because direct root SSH login is disabled, an attacker must first obtain low-privileged access to the system (e.g., via other vulnerabilities) to be able to log in as the root user. The password is hardcoded and so allows for an actor with local access on effected versions to escalate to root

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.abdulmhsblog.com/posts/sfx2100-vulns/ Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:datacast:sfx2100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:datacast:sfx2100:-:*:*:*:*:*:*:*
History

17 Mar 2026, 17:08

Type Values Removed Values Added
References () https://www.abdulmhsblog.com/posts/sfx2100-vulns/ - () https://www.abdulmhsblog.com/posts/sfx2100-vulns/ - Exploit, Third Party Advisory
Summary
  • (es) El archivo de configuración de instalación /root/anaconda-ks.cfg en el Receptor de Satélite SuperFlex Serie SFX (SFX2100) de International Datacasting Corporation (IDC) almacena de forma insegura el hash de la contraseña de root codificada de forma rígida. La contraseña en sí es altamente insegura y susceptible a ataques de diccionario fuera de línea utilizando la lista de palabras rockyou.txt. Debido a que el inicio de sesión SSH directo como root está deshabilitado, un atacante debe primero obtener acceso de bajo privilegio al sistema (por ejemplo, a través de otras vulnerabilidades) para poder iniciar sesión como usuario root. La contraseña está codificada de forma rígida y por lo tanto permite a un actor con acceso local en las versiones afectadas escalar a root.
First Time Datacast
Datacast sfx2100
Datacast sfx2100 Firmware
CPE cpe:2.3:h:datacast:sfx2100:-:*:*:*:*:*:*:*
cpe:2.3:o:datacast:sfx2100_firmware:-:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.8

05 Mar 2026, 06:16

Type Values Removed Values Added
References
  • {'url': 'https://www.abdulmhsblog.com/posts/spfx-vulnrabilities/', 'source': 'b7efe717-a805-47cf-8e9a-921fca0ce0ce'}
  • () https://www.abdulmhsblog.com/posts/sfx2100-vulns/ -

04 Mar 2026, 08:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-03-04 08:16

Updated : 2026-03-17 17:08

NVD link : CVE-2026-29120

Mitre link : CVE-2026-29120

CVE.ORG link : CVE-2026-29120

JSON object : View

Products Affected

datacast

  • sfx2100
  • sfx2100_firmware
CWE
CWE-798

Use of Hard-coded Credentials