Hard-coded Credentials Vulnerability in FortiRecorder: Unauthorized Control of FortiCameras

Hard-coded Credentials Vulnerability in FortiRecorder: Unauthorized Control of FortiCameras

CVE-2019-6698 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Use of Hard-coded Credentials vulnerability in FortiRecorder all versions below 2.7.4 may allow an unauthenticated attacker with knowledge of the aforementioned credentials and network access to FortiCameras to take control of those, provided they are managed by a FortiRecorder device.

Learn more about our Network Penetration Testing.