HarborGuard / CVE
Back to search
HIGHCVE-2026-42929Published Modified CNA icscert

CVE-2026-42929: MacGregor Voyage Data Recorder (VDR) G4e Use of Hard-coded Credentials

Danelec MacGregor Voyage Data Recorder includes default accounts with hard-coded credentials.

HarborGuard Analysis

HarborGuard analysis

Synopsis

Hard-coded credential exposure in the Danelec MacGregor Voyage Data Recorder (VDR) G4e. The device ships with default accounts whose passwords are baked into the firmware, reachable by any attacker on the same network segment as the VDR without further authentication or user interaction. Successful login grants high-impact read and write access to recorded voyage data and device configuration. A patched firmware build at version 5.250 is available on HarborGuard for affected environments.

HarborGuard Coverage

Detection

Detection is available across every HarborGuard environment. The advisory is ingested from upstream ICS-CERT feeds within minutes of publication and matched against firmware images and container artifacts in customer registries and build pipelines, including custom-built images.

Available
Triage

Triage applies the published CVSS v4.0 score of 8.7 (High) and re-weights it against each customer's compliance policy, so environments that flag maritime or operational-technology workloads see this surfaced with higher urgency. Findings are routed into the appropriate inbox inside each customer org based on image ownership and workload tags.

Available
Patch

A patched-image rebuild at firmware version 5.250 is available on HarborGuard for environments running an affected VDR G4e build. For customers who opt into auto-remediation, the rebuild is produced automatically, regression-tested, and a pull request is opened against affected workloads.

Available

Exploit Conditions

  • Network reachabilityDetail

    The attacker must be on an adjacent network such as the ship's LAN or a connected VPN segment; the VDR is not exploitable from the open internet by default.

  • AuthenticationNot required

    No prior authentication is needed because the hard-coded credentials themselves serve as the entry point.

  • Victim interactionNot required

    Exploitation is fully attacker-driven and does not require any action from a crew member or operator.

  • Attack complexityDetail

    The CVSS vector marks attack complexity as low; once the default credentials are known, login is reliable and condition-free.

Blast Radius

  • Reads stored voyage data recordings, including bridge audio, radar, and navigation telemetry held on the device.
  • Modifies or deletes recorded voyage data and device configuration, undermining the integrity of the casualty-investigation record the VDR exists to preserve.
  • Causes limited disruption to VDR availability, such as degraded recording or service interruption on the unit.

How HarborGuard Handles This

Available on HarborGuard: a patched-image rebuild at firmware version 5.250 is published for environments running affected VDR G4e builds, and for customers with auto-remediation enabled the rebuild, regression run, and pull request against affected workloads are produced automatically. Median time from CVE publication to merged patch PR for high-severity issues is around 90 minutes in environments with auto-remediation enabled. Where compliance policy permits direct firmware updates on operational-technology assets, the rebuilt image can be promoted through the normal change window; otherwise HarborGuard surfaces compensating controls such as isolating the VDR onto a dedicated management VLAN, restricting which crew workstations can reach it, and rotating any locally-managed accounts once the vendor firmware lands.

See how HarborGuard automates this

Metrics

CVSS v4.0
8.7
Severity
HIGH
Fixed in
5.250
Affected Products
1

Fix available

5.250
Affected packages
  • Danelec / MacGregor Voyage Data Recorder (VDR) G4e
    < 5.250 (from 0)
CVSS Vector
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N
References