International Datacasting Corporation SFX2100 Satellite Receiver Trivial Password Vulnerability Allowing Unauthorized SSH Access

Vulnerability

A vulnerability exists in the International Datacasting Corporation (IDC) SFX2100 Satellite Receiver due to a trivial password for the 'user' (usr) account. This flaw allows remote, unauthenticated attackers to gain unauthorized SSH access to the system. Although initially placed in a restricted shell, an attacker can easily spawn a full pseudo-terminal to obtain an interactive shell.

Impact

Exploitation of this vulnerability leads to unauthorized SSH access, allowing an attacker to execute commands on the system with the privileges of the 'user' account.

Added: Mar 4, 2026, 8:19 AM

Updated: Mar 4, 2026, 8:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.7

remediation

0.0

relevance

3.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.7

remediation

0.0

relevance

3.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

International Datacasting Corporation SFX2100 Satellite Receiver Trivial Password Vulnerability Allowing Unauthorized SSH Access

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating