PT-2026-52988 · Undefined · Undefined

Published

2026-06-26

Updated

2026-06-26

CVE-2026-31928

CVSS v3.1

8.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls, which are not required to be changed during initial configuration or operation. Using these accounts provides full system access.

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2026-31928

Affected Products

Undefined

PT-2026-52988 · Undefined · Undefined

CVE-2026-31928

Weakness Enumeration

Related Identifiers

Affected Products

References · 3