5 matches found
CVE-2023-5881
Unauthenticated access permitted to web interface page The Genie Company Aladdin Connect Retrofit-Kit Model ALDCM "Garage Door Control Module Setup" and modify the Garage door's SSID settings...
CVE-2023-5880
When the Genie Company Aladdin Connect garage door opener Retrofit-Kit Model ALDCM is placed into configuration mode the web servers “Garage Door Control Module Setup” page is vulnerable to XSS via a broadcast SSID name containing malicious code with client side Java Script and/or HTML. This allo...
Genie Aladdin Connect Mobile Application Security Vulnerability
Genie Aladdin Connect Mobile Application is a garage door opener control software from Genie. A security vulnerability exists in Genie Aladdin Connect Mobile Application 5.65 Build 2075 and prior versions, which stems from the fact that a user's product account authentication data is stored in...
Genie Aladdin Connect Access Control Error Vulnerability
Genie Aladdin Connect is a garage door controller from Genie. An access control error vulnerability exists in Genie Aladdin Connect Retrofit-Kit Model ALDCM that originates from allowing an unauthenticated attacker to access the SSID settings on the Garage Door Control Module Setup page...
Genie Aladdin Connect garage door opener Cross-site scripting vulnerability
Genie Aladdin Connect garage door opener is a garage door opener from Genie. A security vulnerability exists in the Genie Aladdin Connect garage door opener Retrofit-Kit Model ALDCM that stems from a cross-site scripting XSS vulnerability on the Garage Door Control Module Setup page...