CVE-2026-31928 Daktronics CVE debrief

Who should care

Organizations using DMP-5000 devices should be aware of this vulnerability. Given the critical severity and the potential for full system access, immediate attention is required to secure these devices. IT and security teams responsible for managing and maintaining DMP-5000 devices need to assess their current configurations and take appropriate actions to mitigate this vulnerability.

Technical summary

The DMP-5000 devices come with a default administrative web account that has weak authentication controls. This account does not require a change during initial setup or operation, providing full system access. The vulnerability's CVSS:4.0 vector is AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. The weakness associated with this vulnerability is CWE-798.

Defensive priority

High. Given the critical CVSS score of 9.3 and the potential for attackers to gain full system access, securing DMP-5000 devices is a high priority.

Recommended defensive actions

• Immediately review and update the default administrative web account credentials for all DMP-5000 devices.
• Implement additional authentication mechanisms for administrative access.
• Conduct a thorough inventory of all DMP-5000 devices within the organization.
• Apply any available security patches or updates provided by the vendor.
• Monitor DMP-5000 devices for any suspicious activity related to administrative access.

Evidence notes

The information provided is based on the CVE-2026-31928 record and related sources. The CVE details were obtained from CVE.org and NVD. Additional references include ICS-CERT advisories from CISA. The accuracy of this information relies on the provided sources, and further updates may be necessary as new information becomes available.

Official resources