浏览 20+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-29128 | IDC SFX2100 Satellite Receiver bgpd/ospfd/ripd/zebra Config Credential Disclosure via World-Readable Files | International Datacasting Corporation | SFX2100 Satellite Receiver | 中危 | - | 2026-03-05 05:12:36 | Deep Dive |
| CVE-2026-29127 | Incorrect Permission Assignment(777) on `monitor` Users Home Directory Containing SUID Root Binaries in IDC SFX2100 | International Datacasting Corporation | SFX2100 Satellite Receiver | 高危 | - | 2026-03-05 02:36:12 | Deep Dive |
| CVE-2026-29126 | World-Writable, Root Owned/Run `/etc/udhcpc/default.script` in IDC SFX2100 Satellite Receiver Leads To Potential LPE | International Datacasting Corporation | SFX2100 Satellite Receiver | 高危 | - | 2026-03-05 01:51:06 | Deep Dive |
| CVE-2026-29125 | IDC SFX2100 Satellite Receiver allows unprivileged modification of DNS configuration due to world-writable `/etc/resolv.conf` | International Datacasting Corporation | SFX2100 Satellite Receiver | 中危 | - | 2026-03-05 01:38:19 | Deep Dive |
| CVE-2026-29124 | Multiple SUID Root Binaries in `monitor` User Home Directory Leading to Potential Local Privilege Escalation | International Datacasting Corporation | SFX2100 Satellite Receiver | 中危 | - | 2026-03-05 01:23:36 | Deep Dive |
| CVE-2026-29123 | Multiple SUID Root Binaries in `xd` User Home Directory Leading to Potential Local Privilege Escalation | International Datacasting Corporation | SFX2100 Satellite Receiver | 中危 | - | 2026-03-05 01:18:59 | Deep Dive |
| CVE-2026-29122 | `/bin/date` Binary given SETUID Permissions on IDC SFX2100 Leading to Potential LPE | International Datacasting Corporation | SFX2100 Satellite Receiver | 高危 | - | 2026-03-05 00:53:24 | Deep Dive |
| CVE-2026-29121 | `/sbin/ip` Binary given SETUID Permissions on IDC SFX2100 Leading to Potential LPE | International Datacasting Corporation | SFX2100 Satellite Receiver | 高危 | - | 2026-03-05 00:49:00 | Deep Dive |
| CVE-2026-29120 | Insecure, Hardcoded Root Password Stored in Anaconda Configuration File On IDC SFX2100 Satellite Receiver | International Datacasting Corporation | IDC SFX2100 SuperFlex Satellite Receiver | - | - | 2026-03-04 08:10:09 | Deep Dive |
| CVE-2026-29119 | Hardcoded and Insecure Credentials for "Admin" Account providing Telnet Access on IDC SFX2100 Satellite Receiver | International Datacasting Corporation (IDC) | SFX2100 Series SuperFlex SatelliteReceiver | - | - | 2026-03-04 07:58:16 | Deep Dive |
| CVE-2026-28778 | Hardcoded FTP Credentials and LPE(via Insecure Permissions) for `xd` Local Account on IDC SFX2100 | International Datacasting Corporation (IDC) | IDC SFX2100 SuperFlex Satellite Receiver | - | - | 2026-03-04 07:49:11 | Deep Dive |
| CVE-2026-28777 | Hardcoded and Insecure Credentials for "User" Local Account with SSH Access On IDC SFX2100 Satellite Receiver | International Datacasting Corporation (IDC) | SFX2100 Satellite Receiver | - | - | 2026-03-04 07:41:29 | Deep Dive |
| CVE-2026-28776 | Hardcoded and Insecure Credentials for "monitor" account with SSH Access On IDC SFX2100 Satellite Receiver | International Datacasting Corporation (IDC) | IDC SFX2100 SuperFlex Satellite Receiver | - | - | 2026-03-04 07:34:31 | Deep Dive |
| CVE-2026-28775 | Unauthenticated RCE via SNMP Default Writable Community String | International Datacasting Corporation (IDC) | SFX2100 Series SuperFlex SatelliteReceiver | - | - | 2026-03-04 07:24:51 | Deep Dive |
| CVE-2026-28774 | Authenticated OS Command Injection via Traceroute Utility leads to Root RCE | International Datacasting Corporation (IDC) | SFX Series SuperFlex SatelliteReceiver Web Management Interface | - | - | 2026-03-04 07:22:58 | Deep Dive |
| CVE-2026-28773 | Authenticated OS Command Injection via Ping Utility Leading to RCE as Root | International Datacasting Corporation (IDC) | SFX Series SuperFlex SatelliteReceiver Web Management Interface | - | - | 2026-03-04 07:16:59 | Deep Dive |
| CVE-2026-28772 | Reflected XSS in IDC_Logging Index endpoint | International Datacasting Corporation (IDC) | SFX Series SuperFlex SatelliteReceiver Web Management Interface | - | - | 2026-03-04 07:12:53 | Deep Dive |
| CVE-2026-28771 | Reflected XSS In /index.cgi Endpoint On IDC Satellite Receiver Web Management Interface Version 101 | International Datacasting Corporation (IDC) | SFX Series SuperFlex Satellite Receiver Web Management Interface | - | - | 2026-03-04 07:11:37 | Deep Dive |
| CVE-2026-28770 | XML injection In /IDC_Logging/checkifdone.cgi Endpoint On IDC SFX Web Management Interface Version 101 | International Datacasting Corporation (IDC) | SFX Series SuperFlex Satellite Receiver Web management interface | - | - | 2026-03-04 07:06:35 | Deep Dive |
| CVE-2026-28769 | LFI in /IDC_Logging/checkifdone.cgi, "file" parameter Allowing for File Existence Enumeration On IDC Satellite Receiver Web Management Interface Version 101 | International Datacasting Corporation (IDC) | SFX Series SuperFlex Satellite Receiver Web management interface | - | - | 2026-03-04 07:02:14 | Deep Dive |