ICSA-26-176-04 · Published 2026-06-25 · View on CISA ICS-CERT ↗

Daktronics Controller Firmware

CVSS 8.1 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could could provide an unauthenticated user with complete root-level access and control of the system.

CVEs (3)

CVE-2026-28701 CVE-2026-33560 CVE-2026-31928

Remediations

Daktronics recommends users update their device software to one of the following versions (based on product configuration in use): 8.117.0.x, 9.43.0.x, or 10.34.0.x
Daktronics recommends updating the default passwords and encourages using strong, unique credentials per device.

Affected Vendors

Daktronics

Affected Products (9)

Daktronics · VFC-DMP-5000 <v8.117.x.x

Daktronics · VFC-DMP-5000 <v9.43.x.x

Daktronics · VFC-DMP-5000 <v10.34.x.x

Daktronics · DMP-5000 <v10.34.x.x

Daktronics · DMP-5000 <v8.117.x.x

Daktronics · DMP-5000 <v9.43.x.x

Daktronics · DMP-8000 <v10.34.x.x

Daktronics · DMP-8000 <v8.117.x.x

Daktronics · DMP-8000 <v9.43.x.x

Affected Sectors

Commercial Facilities, Information Technology, Emergency Services, Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more