CVE-2026-1670 – Honeywell CCTV Improper Authentication Vulnerability

“An exposed authentication gap in Honeywell CCTV systems could let attackers step directly into surveillance networks without a password.”

A critical vulnerability affecting Honeywell CCTV monitoring and recording systems, tracked as CVE-2026-1670, allows attackers to bypass authentication controls and gain unauthorized access to the device. The flaw stems from improper validation of authentication mechanisms in the system’s web interface, enabling remote attackers to access functionality that should require valid credentials.

The vulnerability carries a CVSS v3.1 score of 9.8 (Critical). It can be exploited remotely over the network without authentication or user interaction, making it especially dangerous for internet-exposed surveillance infrastructure. Successful exploitation could allow attackers to access or manipulate video feeds, alter system configurations, or pivot deeper into connected security networks.

Honeywell released security guidance addressing the issue and recommends updating affected CCTV systems to patched firmware versions that enforce proper authentication validation and access control protections.

Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.

CVE-2026-1670 – Honeywell CCTV Improper Authentication Vulnerability

Stay Tuned

PLATFORM

SOLUTIONS

RESOURCES

COMPANY

LEGAL

CONTACTS

+1-346-444-8530

Toll Free: 833-444-8530

708 Main St, 10th FL, Houston, TX 77002