CVE-2019-6693

Published Nov 21, 2019

Last updated 5 months ago

Exploit knownCVSS medium 6.5

Overview

Description
Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an attacker with access to the backup file to decipher the sensitive data, via knowledge of the hard-coded key. The aforementioned sensitive data includes users' passwords (except the administrator's password), private keys' passphrases and High Availability password (when set).
Source
psirt@fortinet.com
NVD status
Analyzed
Products
fortios

Risk scores

CVSS 3.1

Type
Primary
Base score
6.5
Impact score
3.6
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Severity
MEDIUM

CVSS 2.0

Type
Primary
Base score
4
Impact score
2.9
Exploitability score
8
Vector string
AV:N/AC:L/Au:S/C:P/I:N/A:N

Known exploits

Data from CISA

Vulnerability name
Fortinet FortiOS Use of Hard-Coded Credentials Vulnerability
Exploit added on
Jun 25, 2025
Exploit action due
Jul 16, 2025
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Weaknesses

nvd@nist.gov
CWE-798
134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-798

Social media

Hype score
Not currently trending

  1. Ransomware vulns with highest exploit likelihood ⬆️ (past 30d): - CVE-2025-53770 (SharePoint..) +3700.00% - CVE-2019-6693 (FortiOS..) +159.30% - CVE-2019-5591 (FortiOS..) +44.14% - CVE-2024-42057 (Zyxel Firewall..) +33.61% - CVE-2018-13374 (FortiOS..) +30.01%

    @DefusedCyber

    23 Jul 2025

    1200 Impressions

    2 Retweets

    9 Likes

    3 Bookmarks

    0 Replies

    1 Quote

  2. 🛡️ We added Fortinet FortiOS, D-Link DIR-859 Router, & AMI MegaRAC SPx vulnerabilities CVE-2019-6693, CVE-2024-0769, & CVE-2024-54085 to our Known Exploited Vulnerabilities Catalog. Visit https://t.co/myxOwap1Tf & apply mitigations to protect against cyberattacks

    @CISACyber

    25 Jun 2025

    7061 Impressions

    20 Retweets

    51 Likes

    9 Bookmarks

    2 Replies

    3 Quotes

Configurations

Related CVEs

  1. An Authentication Bypass by Primary Weakness vulnerability [CWE-305] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4 may allow an unauthenticated attacker to bypass LDAP authentication of Agentless VPN or FSSO policy, when the remote LDAP server is configured in a specific way.CVE-2026-22153
  2. An Exposure of Sensitive Information to an Unauthorized Actor vulnerability [CWE-200] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.1, FortiOS 7.4.0 through 7.4.6, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions may allow a remote unauthenticated attacker to bypass the patch developed for the symbolic link persistency mechanism observed in some post-exploit cases, via crafted HTTP requests. An attacker would need first to have compromised the product via another vulnerability, at filesystem level.CVE-2025-68686
  3. A use of externally-controlled format string vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0 all versions allows an authenticated admin to execute unauthorized code or commands via specifically crafted configuration.CVE-2025-64157
  4. An inconsistent interpretation of http requests ('http request smuggling') vulnerability in Fortinet FortiOS 7.6.0, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4.3 through 6.4.16 may allow an unauthenticated attacker to smuggle an unlogged http request through the firewall policies via a specially crafted headerCVE-2025-55018
  5. Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel VulnerabilityCVE-2026-24858

References

Sources include official advisories and independent security research.