CVE-2026-29120

Insecure, Hardcoded Root Password Stored in Anaconda Configuration File On IDC SFX2100 Satellite Receiver

Assigner: Gridware
Reserved: 04.03.2026 Published: 04.03.2026 Updated: 04.03.2026

The /root/anaconda-ks.cfg installation configuration file in International Datacasting Corporation (IDC) SFX Series(SFX2100) SuperFlex Satellite Receiver insecurely stores the hardcoded root password hash. The password itself is highly insecure and susceptible to offline dictionary attacks using the rockyou.txt wordlist. Because direct root SSH login is disabled, an attacker must first obtain low-privileged access to the system (e.g., via other vulnerabilities) to be able to log in as the root user. The password is hardcoded and so allows for an actor with local access on effected versions to escalate to root

Metrics

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N
CVSS Score: 9.2

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Local	Confidentiality	High	Confidentiality	High
Attack Complexity	Low	Integrity	High	Integrity	High
Attack Requirements	None	Availability	None	Availability	None
Privileges Required	High
User Interaction	None

CVSS 4.0

Product Status

Vendor	International Datacasting Corporation
Product	IDC SFX2100 SuperFlex Satellite Receiver
Versions	Default: unaffected Version SFX2100 is affected

Vendor

International Datacasting Corporation

Product

IDC SFX2100 SuperFlex Satellite Receiver

Versions

Default: unaffected

Version SFX2100 is affected

Credits

Abdul Mhanni finder

References

Problem Types

CWE-798 Use of Hard-coded Credentials CWE

Impacts

Root Credential Compromise