CISA Alerts to Critical Authentication Bypass Vulnerability in Honeywell CCTVs

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an alert regarding a critical authentication bypass vulnerability, CVE-2026-1670, affecting Honeywell CCTV systems. The flaw has a CVSS score of 9.8 and allows attackers to change the recovery email without authentication, enabling unauthorized access or account hijacking. No specific timeline or affected product versions were disclosed. The vulnerability impacts Honeywell CCTV devices, with potential consequences including unauthorized system access.