CVE-2026-3669

Name of the Vulnerable Software and Affected Versions Freedom Factory dGEN1 versions up to 20260221

Description A security issue exists in Freedom Factory dGEN1 related to improper authorization. The issue is within the AlarmService function of the com.dgen.alarm component and requires local access to exploit. The exploit for this issue has been publicly disclosed. The vendor was informed of the disclosure but did not respond.

Recommendations Versions up to 20260221 should be updated when a fix becomes available. As a temporary workaround, consider restricting access to the com.dgen.alarm component to minimize the risk of exploitation.