CVE-2023-5879

CVE-2023-5879: Aladdin Connect Android Application Insecure Storage

Vendor The Genie Company
Product Aladdin Connect Mobile Application
Weakness CWE-922
Published January 3, 2024
Last update June 17, 2025

CVSS base score

What the vulnerability does

01Description

Users’ product account authentication data was stored in clear text in The Genie Company Aladdin Connect Mobile Application Version 5.65 Build 2075 (and below) on Android Devices. This allows the attacker, with access to the android device, to potentially retrieve users' clear text authentication credentials.

Key dates

02Disclosure timeline

January 3, 2024 CVE published
June 17, 2025 Record updated