CVE-2019-6693

🗓️ 21 Nov 2019 15:08:05Reported by fortinetType

cve🔗 web.nvd.nist.gov📰️ 6 Media mentions👁 191 Views

Use of hard-coded cryptographic key in FortiOS config backup file

Reporter	Title	Published	Views	Family All 20
ATTACKERKB	CVE-2019-6693	21 Nov 201900:00	–	attackerkb
GithubExploit	Exploit for Use of Hard-coded Credentials in Fortinet Fortianalyzer	30 Jun 202308:48	–	githubexploit
Circl	CVE-2019-6693	6 Jul 202311:08	–	circl
CISA KEV Catalog	Fortinet FortiOS Use of Hard-Coded Credentials Vulnerability	25 Jun 202500:00	–	cisa_kev
CISA	CISA Adds Three Known Exploited Vulnerabilities to Catalog	25 Jun 202512:00	–	cisa
CNVD	Fortinet FortiOS Trust Management Issue Vulnerability	21 Nov 201900:00	–	cnvd
Cvelist	CVE-2019-6693	21 Nov 201915:08	–	cvelist
Fortinet	Protect	30 Jun 202000:00	–	fortinet
Tenable Nessus	Fortinet Fortigate Hardcoded symmetric key in fips.c (FG-IR-19-007)	27 Oct 202400:00	–	nessus
Tenable Nessus	Fortinet FortiOS < 5.6.10 / 6.0 < 6.0.7 / 6.2.x < 6.2.1 Vulnerable Encryption (FG-IR-19-007)	19 Dec 201900:00	–	nessus

NVD

Node

fortinet fortiosRange≤5.6.10

fortinet fortiosRange6.0.0–6.0.6

fortinet fortiosMatch6.2.0

[
  {
    "product": "FortiGate",
    "vendor": "Fortinet",
    "versions": [
      {
        "status": "affected",
        "version": "5.6.9 and below"
      },
      {
        "status": "affected",
        "version": "6.0.5 and below"
      },
      {
        "status": "affected",
        "version": "6.2.0"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.com/advisory/FG-IR-19-007
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

24 Oct 2025 12:53Current

6.8Medium risk

Vulners AI Score6.8

CVSS 24

CVSS 3.16.5

EPSS0.72223

SSVC