CVE-2026-44611NVD

Vulnerability Summary

Danelec MacGregor Voyage Data Recorder
passwords are stored with a hashing method which limits password length and is susceptible to brute force attacks.

Severity Level

MEDIUM(5.4)

Published Date

May 29, 2026

Last Modified

May 29, 2026

Exploitation Status

UNKNOWN

Root Weakness (CWE)

N/A

EPSS Score (30-Day)

0.01%Probability

CVSS v3.1 Base Metrics

Attack VectorAdjacent

Attack ComplexityHigh

Privileges RequiredLow

User InteractionNone

ScopeUnchanged

ConfidentialityHigh

IntegrityLow

AvailabilityNone

External References

https://www.danelec.com/contact
https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-01.json