CVE-2023-5879

Description

Users’ product account authentication data was stored in clear text in The Genie Company Aladdin Connect Mobile Application Version 5.65 Build 2075 (and below) on Android Devices. This allows the attacker, with access to the android device, to potentially retrieve users' clear text authentication credentials.

CVSS Version 3.1

nvd
CVE ID: CVE-2023-5879
Base Score: 6.8
Base Severity: MEDIUM
Vector String:CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 0.9

Refrence: NVD

Description​

Description