CVE-2026-42929

HIGH

MacGregor Voyage Data Recorder (VDR) G4e Use of Hard-coded Credentials

Title source: cna
STIX 2.1

Description

Danelec MacGregor Voyage Data Recorder includes default accounts with hard-coded credentials.

References (3)

Core 3

Scores

CVSS v3 8.3
EPSS 0.0034
EPSS Percentile 25.9%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-798
Status published
Products (2)
Danelec/MacGregor Voyage Data Recorder (VDR) G4e < 5.250
macgregor/interschalt_vdr_g4e_firmware < 5.250
Published May 29, 2026
Tracked Since May 30, 2026