CVE-2023-5881

CVSS 3.1 Score 8.2 of 10 (high)

Details

Published Jan 3, 2024

Updated: Jan 10, 2024

CWE ID 306

Summary

CVE-2023-5881 is a newly disclosed vulnerability affecting The Genie Company's Aladdin Connect (Retrofit-Kit Model ALDCM) Garage Door Control Module Setup web interface. This issue grants unauthenticated users the ability to access and modify the garage door's SSID settings, posing a significant security risk if an attacker manages to change the SSID to gain unauthorized access to the network. The vulnerability could allow an attacker to manipulate the garage door's connection and potentially gain entry to a user's property. It is essential that users promptly update their systems to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tOCj0g
https://www.cve.org/CVERecord?id=CVE-2023-5881
https://nvd.nist.gov/vuln/detail/CVE-2023-5881

Back to Vulnerability Database

CVE-2023-5881

CVSS 3.1 Score 8.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations