CVE-2026-42929

Danelec MacGregor Voyage Data Recorder includes default accounts with hard-coded credentials

HIGHScheduled

Published:May 29, 2026(3 days ago)

Modified:May 29, 2026

Adjacent NetworkNo Auth RequiredNo InteractionLow Complexity

AI Explanation

The Danelec MacGregor Voyage Data Recorder includes default user accounts that have hard-coded credentials. This means the passwords for these accounts are fixed and cannot be changed, making them easily guessable or discoverable by attackers.

▶Show original NVD description

Danelec MacGregor Voyage Data Recorder includes default accounts with hard-coded credentials.

Organizations operating Danelec MacGregor Voyage Data Recorders face a high risk of unauthorized access due to attackers exploiting easily discoverable hard-coded default credentials.

ADJACENT_NETWORKLow ComplexityNo Auth NeededNo User Interaction

Remediation Recommended

This vulnerability carries significant risk. Schedule patching in your next cycle.

Patch Status:Not Available

What should I do?

No official patch is available yet — apply vendor workarounds if provided.
Review the affected versions below to confirm your exposure.
Monitor this CVE for patch releases and apply them as soon as available.

How to Fix

1["Disable or remove all default accounts with hard-coded credentials if they are not strictly necessary for system operation.","If default accounts cannot be removed, consult the vendor for a firmware update that allows modification or removal of these credentials.","Isolate the device on a segmented network to limit exposure if the hard-coded credentials cannot be changed."]

Timeline

Published
CVE disclosed publicly
May 29, 20263 days ago
Last Modified
Most recent update
May 29, 20263 days ago
Indexed to CVEInsight
Added to this platform
May 29, 20262 days ago

References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/...
https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01
https://www.danelec.com/contact

CVSS Score

v3.1

8.3/ 10.0

HIGH

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

At a Glance

Affected Products

References

CVE-2026-42929

AI Explanation

How to Fix

Timeline

References

CVSS Score

At a Glance

Official Sources

CVSS v3 Vector

Impact Analysis

CVE-2026-42929

✦ AI Explanation

How to Fix

Timeline

References

CVSS Score

At a Glance

Official Sources

CVSS v3 Vector

Impact Analysis

AI Explanation