Volerion logoVolerion
Volerion logoVolerion

Danelec MacGregor Voyage Data Recorder Default Credentials Vulnerability

Vulnerability

A vulnerability exists in the Danelec MacGregor Voyage Data Recorder (VDR) G4e devices prior to version 5.250, allowing for unauthorized access due to the presence of default usernames and passwords, with no requirement for users to change them. This issue is compounded by the device's web interface, which permits direct editing of sensitive authentication-related files, potentially enabling unauthorized password changes.

Impact

Exploitation of this vulnerability could lead to unauthorized administrator access on the affected device.

Remediation

Danelec has released firmware version 5.250 to address this vulnerability. Users are advised to update their devices at the earliest opportunity. For more information, contact Danelec through their website.

Added: May 29, 2026, 7:48 PM
Updated: May 29, 2026, 7:48 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
5.0
exploitability
4.7
remediation
7.9
relevance
9.3
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.