An authenticated user can download a backup of the Danelec MacGregor Voyage Data Recorder device which includes account data and password hashes
An authenticated user can download a backup file from the Danelec MacGregor Voyage Data Recorder. This backup file includes sensitive account data and password hashes, which could be used to compromise user accounts through offline cracking.
An authenticated user can download a backup of the Danelec MacGregor Voyage Data Recorder device which includes account data and password hashes.
Organizations using Danelec MacGregor Voyage Data Recorders are at medium risk of account compromise if an authenticated user gains access to a backup containing password hashes.
Monitor & Review
Low severity — keep this CVE on your radar and patch during routine maintenance.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
0
Affected Products
3
References
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
Exploitability
Impact