CVE-2026-29123 Linux — Exploit & Vulnerability Details HIGH

CVE-2026-29123

HIGH CVSS 4.0: 8.6 EPSS 0.01%

Parameter	Value
CVSS	8.6 (HIGH)
Type	CWE-269 (Improper Privilege Management)
Vendor	Linux
Public PoC	No

A SUID root-owned binary in /home/xd/terminal/XDTerminal in International Data Casting (IDC) SFX2100 on Linux allows a local actor to potentially preform local privilege escalation depending on conditions of the system via execution of the affected SUID binary. This can be via PATH hijacking, symlink abuse or shared object hijacking.

Attack Parameters

Attack Vector

Local

Requires local access

Attack Complexity

High

Difficult to exploit

Attack Requirements

Present

Additional conditions required

Privileges Required

Low

Basic privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

High

Complete data modification

Availability

None

No disruption

CVSS Vector v4.0

Weakness Type (CWE)

CWE-269 Improper Privilege Management

References 1

https://www.abdulmhsblog.com/posts/sfx2100-vulns/

b7efe717-a805-47cf-8e9a-921fca0ce0ce

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-40253

Linux

6.8

CVE-2026-41035

Linux

7.4

CVE-2026-40245

Linux

7.5

CVE-2026-6328

Linux

8.3

CVE-2026-39418

Linux

5.0

Menu

CVE-2026-29123

Attack Parameters

Impact Assessment

CVSS Vector v4.0

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-40253

CVE-2026-41035

CVE-2026-40245

CVE-2026-6328

CVE-2026-39418

CVE Details

Editor's Choice

Menu

CVE-2026-29123

Attack Parameters

Impact Assessment

CVSS Vector v4.0

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-40253

CVE-2026-41035

CVE-2026-40245

CVE-2026-6328

CVE-2026-39418

CVE Details

Editor's Choice

Stay informed on cybersecurity