| CVE-2026-1961 | Forman: foreman: remote code execution via command injection in websocket proxy | Red Hat | Red Hat Satellite 6.16 for RHEL 8 | High | 8.0 | 2026-03-26 12:53:10 | Deep Dive |
| CVE-2026-4324 | Rubygem-katello: katello: denial of service and potential information disclosure via sql injection | Red Hat | Red Hat Satellite 6.17 for RHEL 9 | Medium | 5.4 | 2026-03-17 13:52:15 | Deep Dive |
| CVE-2026-29128 | IDC SFX2100 Satellite Receiver bgpd/ospfd/ripd/zebra Config Credential Disclosure via World-Readable Files | International Datacasting Corporation | SFX2100 Satellite Receiver | 中危 | - | 2026-03-05 05:12:36 | Deep Dive |
| CVE-2026-29127 | Incorrect Permission Assignment(777) on `monitor` Users Home Directory Containing SUID Root Binaries in IDC SFX2100 | International Datacasting Corporation | SFX2100 Satellite Receiver | 高危 | - | 2026-03-05 02:36:12 | Deep Dive |
| CVE-2026-29126 | World-Writable, Root Owned/Run `/etc/udhcpc/default.script` in IDC SFX2100 Satellite Receiver Leads To Potential LPE | International Datacasting Corporation | SFX2100 Satellite Receiver | 高危 | - | 2026-03-05 01:51:06 | Deep Dive |
| CVE-2026-29125 | IDC SFX2100 Satellite Receiver allows unprivileged modification of DNS configuration due to world-writable `/etc/resolv.conf` | International Datacasting Corporation | SFX2100 Satellite Receiver | 中危 | - | 2026-03-05 01:38:19 | Deep Dive |
| CVE-2026-29124 | Multiple SUID Root Binaries in `monitor` User Home Directory Leading to Potential Local Privilege Escalation | International Datacasting Corporation | SFX2100 Satellite Receiver | 中危 | - | 2026-03-05 01:23:36 | Deep Dive |
| CVE-2026-29123 | Multiple SUID Root Binaries in `xd` User Home Directory Leading to Potential Local Privilege Escalation | International Datacasting Corporation | SFX2100 Satellite Receiver | 中危 | - | 2026-03-05 01:18:59 | Deep Dive |
| CVE-2026-29122 | `/bin/date` Binary given SETUID Permissions on IDC SFX2100 Leading to Potential LPE | International Datacasting Corporation | SFX2100 Satellite Receiver | 高危 | - | 2026-03-05 00:53:24 | Deep Dive |
| CVE-2026-29121 | `/sbin/ip` Binary given SETUID Permissions on IDC SFX2100 Leading to Potential LPE | International Datacasting Corporation | SFX2100 Satellite Receiver | 高危 | - | 2026-03-05 00:49:00 | Deep Dive |
| CVE-2026-29120 | Insecure, Hardcoded Root Password Stored in Anaconda Configuration File On IDC SFX2100 Satellite Receiver | International Datacasting Corporation | IDC SFX2100 SuperFlex Satellite Receiver | - | - | 2026-03-04 08:10:09 | Deep Dive |
| CVE-2026-28778 | Hardcoded FTP Credentials and LPE(via Insecure Permissions) for `xd` Local Account on IDC SFX2100 | International Datacasting Corporation (IDC) | IDC SFX2100 SuperFlex Satellite Receiver | - | - | 2026-03-04 07:49:11 | Deep Dive |
| CVE-2026-28777 | Hardcoded and Insecure Credentials for "User" Local Account with SSH Access On IDC SFX2100 Satellite Receiver | International Datacasting Corporation (IDC) | SFX2100 Satellite Receiver | - | - | 2026-03-04 07:41:29 | Deep Dive |
| CVE-2026-28776 | Hardcoded and Insecure Credentials for "monitor" account with SSH Access On IDC SFX2100 Satellite Receiver | International Datacasting Corporation (IDC) | IDC SFX2100 SuperFlex Satellite Receiver | - | - | 2026-03-04 07:34:31 | Deep Dive |
| CVE-2026-28771 | Reflected XSS In /index.cgi Endpoint On IDC Satellite Receiver Web Management Interface Version 101 | International Datacasting Corporation (IDC) | SFX Series SuperFlex Satellite Receiver Web Management Interface | - | - | 2026-03-04 07:11:37 | Deep Dive |
| CVE-2026-28770 | XML injection In /IDC_Logging/checkifdone.cgi Endpoint On IDC SFX Web Management Interface Version 101 | International Datacasting Corporation (IDC) | SFX Series SuperFlex Satellite Receiver Web management interface | - | - | 2026-03-04 07:06:35 | Deep Dive |
| CVE-2026-28769 | LFI in /IDC_Logging/checkifdone.cgi, "file" parameter Allowing for File Existence Enumeration On IDC Satellite Receiver Web Management Interface Version 101 | International Datacasting Corporation (IDC) | SFX Series SuperFlex Satellite Receiver Web management interface | - | - | 2026-03-04 07:02:14 | Deep Dive |
| CVE-2025-10990 | Rexml: rexml: denial of service via inefficient regex parsing | - | - | High | 7.5 | 2026-02-27 13:32:02 | Deep Dive |
| CVE-2026-0980 | Rubyipmi: red hat satellite: remote code execution in rubyipmi via malicious bmc username | Red Hat | Red Hat Satellite 6.16 for RHEL 8 | High | 8.3 | 2026-02-27 07:30:43 | Deep Dive |
| CVE-2025-9572 | Foreman: satellite: graphql api permission bypass leads to information disclosure | The Foreman | Foreman | Medium | 5.0 | 2026-02-27 07:28:44 | Deep Dive |