CVE-2026-40425

Summary

The administrator account for the

Danelec MacGregor Voyage Data Recorder web interface can directly edit sensitive files related to authentication, potentially changing the root password.

Affected Software

VendorProductVersion RangeStatus
DanelecMacGregor Voyage Data Recorder (VDR) G4e0 < 5.250affected

Weaknesses

  • CWE-552: CWE-552

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References