CVE-2026-40425NVD

Description

The administrator account for the

Danelec MacGregor Voyage Data Recorder
web interface can directly edit sensitive files related to authentication, potentially changing the root password.

Severity Level

MEDIUM (5.7)

Published Date

29/05/2026

Last Modified

29/05/2026

Exploitation Status

????

References

https://www.danelec.com/contact
https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-01.json

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

CVE-2026-40425NVD

Description

References