CVE-2019-6698

Use of Hard-coded Credentials vulnerability in FortiRecorder all versions below 2.7.4 may allow an unauthenticated attacker with knowledge of the aforementioned credentials and network access to FortiCameras to take control of those, provided they are managed by a FortiRecorder device.

Published: Aug 23, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-6698
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-798

Affected Software
References

Software	From	Fixed in
fortinet / fortirecorder_firmware	-	2.7.4

https://fortiguard.com/advisory/FG-IR-19-185

Vulnerability Database

289,784

CVE-2019-6698