Skip to content

Information Security News

  • Home
  • Cyber Security
  • Cybercriminals
  • Data Leak
  • Google
    • Android
  • Information Security
  • Linux
  • Malware
  • Microsoft
    • Windows
  • Open Source Tool
  • Vulnerability
  • Technology

Information Security News

  • Home
  • Cyber Security
  • Cybercriminals
  • Data Leak
  • Google
    • Android
  • Information Security
  • Linux
  • Malware
  • Microsoft
    • Windows
  • Open Source Tool
  • Vulnerability
  • Technology
  • Vulnerability

The Invisible Skeleton Key: Critical CVSS 9.8 Flaw in Honeywell Cameras Allows Full Admin Takeover

by Nam Phong · February 20, 2026

A critical vulnerability has been unearthed within ubiquitous Honeywell surveillance cameras, enabling unauthorized actors to gain illicit access to live video feeds or effectuate a total takeover of the device’s administrative account. The Cybersecurity and Infrastructure Security Agency (CISA) issued a formal advisory regarding this systemic flaw.

Cataloged as CVE-2026-1670 with a near-maximum CVSS score of 9.8, the vulnerability is classified as a failure to authenticate a critical function. The essence of the exploit lies in its circumvention of traditional login requirements; through an exposed application programming interface (API), an adversary can remotely alter the email address designated for password recovery. Consequently, initiating a “forgot password” sequence allows the attacker to hijack the account and commandeer the camera’s visual stream.

CISA clarified that the vulnerability stems from an unauthenticated API that permits the unauthorized modification of recovery parameters. This defect impacts several models, including the I-HIB2PI-UL 2MP IP (version 6.1.22.1216), as well as devices within the SMB NDAA, PTZ WDR 2MP, and 25M IPC series.

Honeywell stands as a titan in the global security and surveillance sector, with its hardware deployed extensively across corporate offices, industrial warehouses, and critical infrastructure sites. While the warning specifically pertains to mid-tier models commonly utilized by small to medium-sized enterprises, these devices are frequently integrated into environments with rigorous security mandates.

Presently, there are no documented instances of this vulnerability being exploited in active offensives. Nevertheless, specialists strongly advocate for sequestering such devices from the public internet, isolating them behind robust firewalls, and utilizing encrypted remote access protocols. As Honeywell has yet to publish a dedicated bulletin for CVE-2026-1670, proprietors of the affected hardware are urged to consult Honeywell support for further guidance and firmware remediation.

Related coverage

  • 7 FatFs Bugs Threaten Embedded Devices via Removable Media
  • Progress Software Shuts Down ShareFile Over External Threat
  • The GhostCommit Vulnerability: AI Assistants Weaponized via Images
  • Critical Joomla Extension Vulnerabilities Actively Exploited
  • CVE-2026-0288: PAN-OS TSA Buffer Overflows Score CVSS 9.2

Support Our Threat Intelligence

If you find our technology report and cybersecurity news helpful, consider supporting our work.

Buy Me a Coffee Logo Buy Me a Coffee PayPal
Crypto QR Code
USDT (TRC20):
TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm
USDT (ERC20):
0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce

Tags: Account TakeoverCISACVE-2026-1670CVSS 9.8firmwire updateHoneywellIoT SecurityIP Camerasecurity vulnerabilitysurveillance securityTech News 2026

Follow:

  • Next story The Digital Trap: How CRESCENTHARVEST Malware Weaponizes Protest News to Silence Dissent
  • Previous story Routers as “Modern Weapons”: Texas Sues TP-Link Over Alleged State-Sponsored Backdoors

  • Recent Posts
  • Popular Posts
  • Tags
  • Progress Software ShareFile Storage Zone Controller shut down over external threat CVE-2026-2699

    Vulnerability

    Progress Software Shuts Down ShareFile Over External Threat

    July 14, 2026

  • Diagram illustrating the jscrambler supply chain attack and IronWorm malware infection process

    Malware

    Jscrambler Supply Chain Attack Analysis

    July 14, 2026

  • GhostCommit AI vulnerability diagram illustrating prompt injection against AI coding assistants

    Vulnerability

    The GhostCommit Vulnerability: AI Assistants Weaponized via Images

    July 14, 2026

  • Critical Joomla extension vulnerabilities diagram, iCagenda and Balbooa Forms exploit overview

    Malware

    Critical Joomla Extension Vulnerabilities Actively Exploited

    July 14, 2026

  • Debian 13.6 point release updates with UEFI Secure Boot and Linux kernel patches

    Linux

    Debian 13.6 Released: Crucial Security and UEFI Fixes

    July 14, 2026

  • Apache Camel vulnerabilities enabling server-side request forgery and authentication bypass in JMS and WebSocket connectors

    Vulnerability

    Apache Camel Patches Five High-Severity Vulnerabilities

    July 9, 2026

  • OpenSUSE Leap 15.4 Beta releases, Linux distributions

    Linux

    OpenSUSE Leap 15.4 Beta releases, Linux distributions

    May 30, 2020

  • Ubuntu 16.04.6 LTS released: fix security vulnerabilities

    Linux

    Ubuntu 16.04.6 LTS released: fix security vulnerabilities

    March 1, 2019

  • GhostBSD 23.10.1 released, FreeBSD distribution

    Linux

    GhostBSD 23.10.1 released, FreeBSD distribution

    May 1, 2020

  • Solus 4.4 Fortitude releases, Linux distribution

    Linux

    Solus 4.4 Fortitude releases, Linux distribution

    January 26, 2020

  • AI AI security Android Apple APT BOTNET China CISA cloud security cryptocurrency cyberattack cybercrime Cyber Espionage cybersecurity Cybersecurity 2026 data breach Github google hacking Infosec InfoSec 2026 Infostealer Linux Linux Kernel malware Microsoft network security open source Penetration Testing phishing privacy privilege escalation Prompt Injection ransomware RCE remote code execution security Social Engineering supply chain attack Tech News 2026 threat intelligence vulnerability windows Windows 11 zero-day
  • Home
  • About Us
  • Contact Us
  • DMCA NOTICE
  • Privacy Policy

Information Security News © 2026. All Rights Reserved.

Powered by  - Designed with Hueman Pro