CVE-2026-31928
DMP-5000 Default Admin Account Weak Authentication Advisory
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
DMP-5000 devices have a critical vulnerability where default administrative web accounts with weak authentication are not mandatory to change, potentially allowing unauthorized users to gain full system access. This issue is concerning because it enables complete control over affected systems if network-accessible defa