Skip to main content

MacGregor VDR G4E EUVDEUVD-2026-33403

| CVE-2026-40425 MEDIUM
Files or Directories Accessible to External Parties (CWE-552)
2026-05-29 icscert GHSA-3cp8-799v-mwxm
6.9
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
6.9 MEDIUM
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
X

Lifecycle Timeline

3
Patch available
May 29, 2026 - 20:02 EUVD
CVSS changed
May 29, 2026 - 19:22 NVD
5.7 (MEDIUM) 6.9 (MEDIUM)
Analysis Generated
May 29, 2026 - 19:02 vuln.today

DescriptionCVE.org

The administrator account for the

Danelec MacGregor Voyage Data Recorder web interface can directly edit sensitive files related to authentication, potentially changing the root password.

AnalysisAI

Authenticated administrator access on the Danelec MacGregor Voyage Data Recorder (VDR) G4E web interface permits direct editing of sensitive authentication files, including the ability to overwrite the root password. The CVSS vector (AV:A/AC:L/PR:H/UI:N) confirms exploitation requires both adjacent network positioning and existing high-privilege credentials, meaning this is not a remotely exploitable unauthenticated attack path. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Gain adjacent shipboard network access
Delivery
Authenticate to VDR web interface as administrator
Exploit
Navigate to file editing functionality
Execution
Edit root authentication file
Persist
Set attacker-controlled root password
Impact
Achieve full OS-level root access

Vulnerability AssessmentAI

Exploitation Exploitation requires two concrete prerequisites: (1) the attacker must have adjacent network access to the VDR G4E web management interface, meaning they must be on the same shipboard network segment (AV:A - not exploitable from the open internet or arbitrary remote networks); and (2) the attacker must already possess valid administrator-level credentials for the VDR web interface (PR:H). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS base score of 5.7 (Medium) reflects a constrained attack surface: AV:A limits exploitation to adjacent network segments, and PR:H requires the attacker to already possess administrator credentials for the VDR web interface. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has obtained administrator credentials for the Danelec VDR G4E web interface - through credential theft, default credentials, or prior compromise of a bridge network workstation - connects from the adjacent shipboard network segment. Using the web interface's file editing capability, the attacker directly modifies the root authentication file to set a known root password, then uses that password to achieve full OS-level access to the VDR. …
Remediation The primary remediation action is to consult the CISA ICS advisory ICSA-26-148-01 (https://www.cisa.gov/news-events/ics-advisories/icsa-26-148-01) and contact Danelec directly at https://www.danelec.com/contact for patch or firmware update availability - no specific fixed version number is confirmed in the available input data, so a vendor-released patch version cannot be cited at time of analysis. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-33403 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy