Skip to main content

Sfx2100 Firmware CVE-2026-28770

HIGH
XML Injection (aka Blind XPath Injection) (CWE-91)
2026-03-04 b7efe717-a805-47cf-8e9a-921fca0ce0ce
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

3
Analysis Generated
Mar 12, 2026 - 22:05 vuln.today
PoC Detected
Mar 09, 2026 - 18:23 vuln.today
Public exploit code
CVE Published
Mar 04, 2026 - 07:16 nvd
HIGH 8.8

DescriptionCVE.org

Improper neutralization of special elements in the /IDC_Logging/checkifdone.cgi script in International Datacasting Corporation (IDC) SFX Series SuperFlex Satellite Receiver Web management Interface version 101 allows for XML Injection. The application reflects un-sanitized user input from the file parameter directly into a CDATA block, allowing an authenticated attacker to break out of the tags and inject arbitrary XML elements. An actor is confirmed to be able to turn this into an reflected XSS but further abuse such as XXE may be possible

AnalysisAI

XML injection in the IDC SFX2100 satellite receiver web interface allows authenticated attackers to inject arbitrary XML elements and execute reflected cross-site scripting attacks through unsanitized input in the checkifdone.cgi script. Public exploit code exists for this vulnerability, and potential for more severe attacks such as XXE exploitation has not been ruled out. No patch is currently available for affected firmware versions.

Technical ContextAI

Affects Sfx2100 Firmware. Improper neutralization of special elements in the /IDC_Logging/checkifdone.cgi script in International Datacasting Corporation (IDC) SFX Series SuperFlex Satellite Receiver Web management Interface version 101 allows for XML Injection. The application reflects un-sanitized user input from the file parameter directly into a CDATA block, allowing an authenticated attacker to break out of the tags and inject arbitrary XML elements. An actor is confirmed to be able to turn this into an reflected

RemediationAI

Monitor vendor advisories for a patch. Implement output encoding and Content Security Policy headers. Restrict network access to the affected service where possible.

CVE-2026-29128 CRITICAL POC
10.0 Mar 05

Plaintext daemon credentials in IDC SFX2100 routing config files (zebra, bgpd, ospfd, ripd). CVSS 10.0. PoC available.

CVE-2026-28775 CRITICAL POC
9.8 Mar 04

Hardcoded/insecure credentials in IDC SFX Series SuperFlex Satellite Receiver. Multiple accounts with known credentials

CVE-2026-28773 HIGH POC
8.8 Mar 04

Authenticated attackers can execute arbitrary OS commands with root privileges on IDC SFX2100 satellite receivers throug

CVE-2026-28774 HIGH POC
8.8 Mar 04

Authenticated attackers can achieve remote code execution with root privileges on IDC SFX2100 satellite receiver devices

CVE-2026-29121 HIGH POC
7.8 Mar 05

The setuid bit on the /sbin/ip utility in IDC SFX2100 satellite receiver firmware allows local users to execute privileg

CVE-2026-29126 HIGH POC
7.8 Mar 05

Sfx2100 Firmware versions up to - is affected by incorrect permission assignment for critical resource (CVSS 7.8).

CVE-2026-29124 HIGH POC
7.8 Mar 05

Sfx2100 Satellite Receiver firmware contains multiple SUID root binaries in predictable locations that allow local privi

CVE-2026-29123 HIGH POC
7.8 Mar 05

Local privilege escalation in IDC SFX2100 firmware affects Linux systems through a SUID binary vulnerable to PATH hijack

CVE-2026-29127 HIGH POC
7.8 Mar 05

Local privilege escalation in IDC SFX2100 Satellite Receiver firmware occurs due to overly permissive file system permis

CVE-2026-28769 MEDIUM POC
6.5 Mar 04

Authenticated users can exploit a path traversal vulnerability in the SFX2100 firmware's logging interface to enumerate

CVE-2026-28772 MEDIUM POC
6.1 Mar 04

Reflected XSS in IDC SFX2100 Firmware's logging interface allows remote attackers to inject malicious scripts through th

CVE-2026-28771 MEDIUM POC
6.1 Mar 04

The SFX2100 web management interface fails to sanitize the `cat` parameter in /index.cgi, enabling reflected XSS attacks

Share

CVE-2026-28770 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy