CISA 2026-05-28

MacGregor Voyage Data Recorder (VDR) G4e

Machine-generated analysis · WAYSCloud LLM

The advisory states that default credentials are present without enforced password changes, and authenticated users can extract password hashes via backup files.

Context

The MacGregor Voyage Data Recorder (VDR) G4e is a maritime data recording system used to store voyage information. The advisory identifies multiple vulnerabilities, including use of default and hard-coded credentials, and exposure of password hashes in downloadable backups. Firmware prior to version V5.250 is affected. The vendor, Danelec, has released a firmware update to address these issues.

Operator considerations

Check: Inventory MacGregor VDR G4e devices running firmware earlier than V5.250
Patch: Upgrade to firmware version V5.250 or later as soon as possible
Log: Monitor for unauthorized access attempts to VDR backup functions

From Cybersecurity and Infrastructure Security Agency ↗

Successful exploitation of these vulnerabilities could result in an attacker gaining administrator access to the device.

The following versions of MacGregor Voyage Data Recorder (VDR) G4e are affected:

MacGregor Voyage Data Recorder (VDR) G4e

Vendor

Equipment

Danelec

MacGregor Voyage Data Recorder (VDR) G4e

Use of Default Credentials, Insufficiently Protected Credentials, Use of Password Hash With Insufficient Computational Effort, Use of Hard-coded Credentials, Files or Directories Accessible to External Parties

Critical Infrastructure Sectors: Transportation Systems

Countries/Areas Deployed: Worldwide

Company Headquarters Location: Denmark

The VDR device includes a default username and password, with no enforced password change.

MacGregor Voyage Data Recorder (VDR) G4e

Read the full advisory on CISA →