CVE-2023-5881

CVE-2023-5881: Unauthenticated access permitted to web interface page "Garage Door Control Module Setup"

Vendor The Genie Company
Product Aladdin Connect (Retrofit-Kit)
Weakness CWE-306 · Missing auth
Published January 3, 2024
Last update September 5, 2024

CVSS base score

What the vulnerability does

01Description

Unauthenticated access permitted to web interface page The Genie Company Aladdin Connect (Retrofit-Kit Model ALDCM) "Garage Door Control Module Setup" and modify the Garage door's SSID settings.

Key dates

02Disclosure timeline

January 3, 2024 CVE published
September 5, 2024 Record updated