漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
IDC SFX2100 Satellite Receiver bgpd/ospfd/ripd/zebra Config Credential Disclosure via World-Readable Files
Vulnerability Description
IDC SFX2100 Satellite Receiver firmware ships with multiple daemon configuration files for routing components (e.g., zebra, bgpd, ospfd, and ripd) that are owned by root but world-readable. The configuration files (e.g., zebra.conf, bgpd.conf, ospfd.conf, ripd.conf) contain hardcoded or otherwise insecure plaintext passwords (including “enable”/privileged-mode credentials). A remote actor is able to abuse the reuse/hardcoded nature of these credentials to further access other systems in the network, gain a foothold on the satellite receiver or potentially locally privilege escalate.
CVSS Information
N/A
Vulnerability Type
不充分的凭证保护机制
Vulnerability Title
International Datacasting SFX2100 SuperFlex Satellite Receiver 安全漏洞
Vulnerability Description
International Datacasting SFX2100 SuperFlex Satellite Receiver是美国International Datacasting公司的一个专业广播级卫星信号接收设备。 International Datacasting SFX2100 SuperFlex Satellite Receiver存在安全漏洞,该漏洞源于多个守护进程配置文件全局可读且包含硬编码明文密码,可能导致远程攻击者访问网络其他系统。
CVSS Information
N/A
Vulnerability Type
N/A