[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-31928":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-27T16:38:37.313Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":171,"aliases":172,"duplicate_of":9,"upstream":173,"downstream":174,"duplicates":175,"related":176,"reserved_at":9,"published_at":177,"modified_at":177,"state":178,"summary":179,"references_raw":186,"kevs":195,"epss":9,"epss_history":196,"metrics":197,"affected":207},"CVE-2026-31928","The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls, which are not required to be changed during initial configuration or operation. Using these accounts provides full system access.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-798","Use of Hard-coded Credentials","The product contains hard-coded credentials, such as a password or cryptographic key.","weakness","Draft","Base","High",[20,118],{"id":21,"name":22,"techniques":23},"CAPEC-191","Read Sensitive Constants Within an Executable",[24],{"id":25,"name":26,"tactics":27,"countermeasures":31},"T1552.001","Credentials In Files",[28],{"id":29,"name":30},"TA0031","Credential Access",[32,37,41,45,50,54,58,63,67,72,76,80,84,89,93,98,102,106,110,114],{"id":33,"name":34,"tactic":35},"D3-CCSA","Credential Compromise Scope Analysis",{"name":36},"Detect",{"id":38,"name":39,"tactic":40},"D3-FA","File Analysis",{"name":36},{"id":42,"name":43,"tactic":44},"D3-FIM","File Integrity Monitoring",{"name":36},{"id":46,"name":47,"tactic":48},"D3-CR","Credential Revocation",{"name":49},"Evict",{"id":51,"name":52,"tactic":53},"D3-ANCI","Authentication Cache Invalidation",{"name":49},{"id":55,"name":56,"tactic":57},"D3-FEV","File Eviction",{"name":49},{"id":59,"name":60,"tactic":61},"D3-DUC","Decoy User Credential",{"name":62},"Deceive",{"id":64,"name":65,"tactic":66},"D3-DF","Decoy File",{"name":62},{"id":68,"name":69,"tactic":70},"D3-CH","Credential Hardening",{"name":71},"Harden",{"id":73,"name":74,"tactic":75},"D3-MFA","Multi-factor Authentication",{"name":71},{"id":77,"name":78,"tactic":79},"D3-CRO","Credential Rotation",{"name":71},{"id":81,"name":82,"tactic":83},"D3-FE","File Encryption",{"name":71},{"id":85,"name":86,"tactic":87},"D3-RIC","Reissue Credential",{"name":88},"Restore",{"id":90,"name":91,"tactic":92},"D3-RF","Restore File",{"name":88},{"id":94,"name":95,"tactic":96},"D3-CTS","Credential Transmission Scoping",{"name":97},"Isolate",{"id":99,"name":100,"tactic":101},"D3-CF","Content Filtering",{"name":97},{"id":103,"name":104,"tactic":105},"D3-LFP","Local File Permissions",{"name":97},{"id":107,"name":108,"tactic":109},"D3-RFAM","Remote File Access Mediation",{"name":97},{"id":111,"name":112,"tactic":113},"D3-CQ","Content Quarantine",{"name":97},{"id":115,"name":116,"tactic":117},"D3-CM","Content Modification",{"name":97},{"id":119,"name":120,"techniques":121},"CAPEC-70","Try Common or Default Usernames and Passwords",[122],{"id":123,"name":124,"tactics":125,"countermeasures":141},"T1078.001","Default Accounts",[126,129,132,135,138],{"id":127,"name":128},"TA0030","Defense Evasion",{"id":130,"name":131},"TA0005","Stealth",{"id":133,"name":134},"TA0110","Persistence",{"id":136,"name":137},"TA0111","Privilege Escalation",{"id":139,"name":140},"TA0108","Initial Access",[142,147,151,155,159,163,167],{"id":143,"name":144,"tactic":145},"D3-AM","Access Modeling",{"name":146},"Model",{"id":148,"name":149,"tactic":150},"D3-AL","Account Locking",{"name":49},{"id":152,"name":153,"tactic":154},"D3-AA","Agent Authentication",{"name":71},{"id":156,"name":157,"tactic":158},"D3-CDP","Change Default Password",{"name":71},{"id":160,"name":161,"tactic":162},"D3-ULA","Unlock Account",{"name":88},{"id":164,"name":165,"tactic":166},"D3-RUAA","Restore User Account Access",{"name":88},{"id":168,"name":169,"tactic":170},"D3-UAP","User Account Permissions",{"name":97},[],[],[],[],[],[],"2026-06-26T22:52:51.074Z","PUBLISHED",{"cisa_kev":180,"cisa_ransomware":180,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":181,"severity_score":182,"severity_version":183,"severity_source":184,"severity_vector":185,"severity_status":178},false,"critical",9.3,"v4.0","cve.org","CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N",[187,191],{"url":188,"sources":189,"tags":190},"https://www.cisa.gov/news-events/ics-advisories/icsa-26-176-04",[184],[],{"url":192,"sources":193,"tags":194},"https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-176-04.json",[184],[],[],[],[198],{"source":184,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":199,"cvss_v4_0":205},{"baseScore":200,"baseSeverity":201,"vectorString":202,"impactScore":203,"exploitabilityScore":204},8.1,"HIGH","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",8.7,7.2,{"baseScore":182,"baseSeverity":206,"vectorString":185,"impactScore":9,"exploitabilityScore":9},"CRITICAL",[208,225,232],{"ecosystem":9,"name":209,"vendor":210,"product":211,"cpe_part":212,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":213},"DMP-5000","daktronics","dmp-5000","a",[214,219,222],{"version":215,"is_range":216,"range_type":184,"version_start":9,"version_start_type":9,"version_end":217,"version_end_type":218,"fixed_in":9},"\u003C v10.34.x.x",true,"v10.34.x.x","excluding",{"version":220,"is_range":216,"range_type":184,"version_start":9,"version_start_type":9,"version_end":221,"version_end_type":218,"fixed_in":9},"\u003C v8.117.x.x","v8.117.x.x",{"version":223,"is_range":216,"range_type":184,"version_start":9,"version_start_type":9,"version_end":224,"version_end_type":218,"fixed_in":9},"\u003C v9.43.x.x","v9.43.x.x",{"ecosystem":9,"name":226,"vendor":210,"product":227,"cpe_part":212,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":228},"DMP-8000","dmp-8000",[229,230,231],{"version":215,"is_range":216,"range_type":184,"version_start":9,"version_start_type":9,"version_end":217,"version_end_type":218,"fixed_in":9},{"version":220,"is_range":216,"range_type":184,"version_start":9,"version_start_type":9,"version_end":221,"version_end_type":218,"fixed_in":9},{"version":223,"is_range":216,"range_type":184,"version_start":9,"version_start_type":9,"version_end":224,"version_end_type":218,"fixed_in":9},{"ecosystem":9,"name":233,"vendor":210,"product":234,"cpe_part":212,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":235},"VFC-DMP-5000","vfc-dmp-5000",[236,237,238],{"version":220,"is_range":216,"range_type":184,"version_start":9,"version_start_type":9,"version_end":221,"version_end_type":218,"fixed_in":9},{"version":223,"is_range":216,"range_type":184,"version_start":9,"version_start_type":9,"version_end":224,"version_end_type":218,"fixed_in":9},{"version":215,"is_range":216,"range_type":184,"version_start":9,"version_start_type":9,"version_end":217,"version_end_type":218,"fixed_in":9}]