top of page
perceptive_background_267k.jpg

The Danelec MacGregor Voyage Data Recorder

device includes a default username and password, with no enforced password change.

Published:

28 mei 2026 om 22:00:00

Alert date:

29 mei 2026 om 20:03:36

Source:

nvd.nist.gov

Click to open the original link from this advisory

Critical Infrastructure, Mobile & IoT

The Danelec MacGregor Voyage Data Recorder device contains a critical security vulnerability involving default username and password credentials with no enforced password change mechanism. This vulnerability allows unauthorized access to maritime data recording systems that are critical for vessel safety and compliance. The device is used in maritime environments for recording voyage data and is subject to international maritime safety regulations. The lack of mandatory credential changes poses significant security risks for maritime operations and potentially compromises sensitive voyage information.

Technical details

Mitigation steps:

Affected products:

Danelec MacGregor Voyage Data Recorder

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-42941
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-148-01.json
https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01
https://www.danelec.com/contact

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page