VYPR
Unrated severityCISA KEVNVD Advisory· Published Nov 21, 2019· Updated Oct 21, 2025

CVE-2019-6693

CVE-2019-6693

Description

Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an attacker with access to the backup file to decipher the sensitive data, via knowledge of the hard-coded key. The aforementioned sensitive data includes users' passwords (except the administrator's password), private keys' passphrases and High Availability password (when set).

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

1