The administrator account for the Danelec MacGregor Voyage Data Recorder web interface can directly edit sensitive files related to authentication,…
This vulnerability allows an authenticated administrator of the Danelec MacGregor Voyage Data Recorder web interface to directly modify critical authentication files. This could lead to unauthorized changes, including altering the root password of the system.
The administrator account for the Danelec MacGregor Voyage Data Recorder web interface can directly edit sensitive files related to authentication, potentially changing the root password.
Organizations using Danelec MacGregor Voyage Data Recorders are at medium risk of unauthorized access or system compromise if an authenticated administrator maliciously alters authentication files.
Monitor & Review
Low severity — keep this CVE on your radar and patch during routine maintenance.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L
0
Affected Products
3
References
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L
Exploitability
Impact