CVE-2026-3669 - Vulnerability Details

- Freedom Factory dGEN1 com.dgen.alarm AlarmService improper authorization

Description

A security vulnerability has been detected in Freedom Factory dGEN1 up to 20260221. This impacts the function AlarmService of the component com.dgen.alarm. Such manipulation leads to improper authorization. The attack needs to be performed locally. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published: 2026-03-07

Score: 4.8 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

Freedom Factory dGEN1 devices running firmware versions up to 20260221 contain a flaw in the AlarmService component that allows a local attacker to bypass authorization checks. The vulnerability, identified as improper authorization, enables the attacker to perform privileged operations on the alarm service, potentially leading to unauthorized control or tampering of the system. The weakness aligns with CWE-266 and CWE-285, highlighting improper privilege management and authorization controls.

Affected Systems

Vendors affected are Freedom Factory with the dGEN1 product line. All firmware releases dated before or equal to 20260221 are vulnerable. The issue is confined to the AlarmService within the com.dgen.alarm component; newer releases post-20260221 may have resolved the flaw, but users should verify their firmware version.

Risk and Exploitability

The CVSS score of 4.8 indicates moderate severity, while an EPSS score of less than 1% suggests a low probability of exploitation in the field. The flaw requires local access to the device, meaning the risk is mitigated for remote attackers but remains significant for anyone with physical or local network access. Since the vulnerability is not listed in the KEV catalog, there is no current evidence of widespread exploitation, but the lack of a vendor response heightens uncertainty. Administrators must verify the firmware version and apply any available vendor update or isolate the device to reduce the local attack surface.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Freedom Factory

dGEN1

affected

Version	Status	Constraints
`20260221`	affected	—

No data.

Vendor Product Confidence Versions

Freedom Factory

Dgen1

100%

Version	Status	Scheme	Platform
`20260221`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply any firmware update issued by Freedom Factory that addresses the AlarmService authorization issue.
Restrict physical and local network access to the dGEN1 device, employing segmentation or access controls to limit local attacker capabilities.
If no update is available, consider temporarily disabling or restricting the AlarmService functions until a patch can be applied.
Notify Freedom Factory support or relevant vendor channels about the vulnerability and request timely resolution.

Generated by OpenCVE AI on April 16, 2026 at 10:45 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00017.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://gist.github.com/Lytes/2bd9cb3faf89b114754f00292beabb38
https://vuldb.com/?ctiid.349557
https://vuldb.com/?id.349557
https://vuldb.com/?submit.764703

History

Wed, 11 Mar 2026 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 09 Mar 2026 10:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Freedom Factory Freedom Factory dgen1
Vendors & Products		Freedom Factory Freedom Factory dgen1

Sat, 07 Mar 2026 18:45:00 +0000

Type	Values Removed	Values Added
Description		A security vulnerability has been detected in Freedom Factory dGEN1 up to 20260221. This impacts the function AlarmService of the component com.dgen.alarm. Such manipulation leads to improper authorization. The attack needs to be performed locally. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title		Freedom Factory dGEN1 com.dgen.alarm AlarmService improper authorization
Weaknesses		CWE-266 CWE-285
References		https://gist.github.com/Lytes/2bd9cb3faf89b114754f00292beabb38 https://vuldb.com/?ctiid.349557 https://vuldb.com/?id.349557 https://vuldb.com/?submit.764703
Metrics		cvssV2_0 `{'score': 4.3, 'vector': 'AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 5.3, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 5.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 4.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Freedom Factory Dgen1

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-03-07T18:32:07.982Z

Updated: 2026-03-11T16:28:49.539Z

Reserved: 2026-03-06T20:53:29.645Z

Link: CVE-2026-3669

Vulnrichment

Updated: 2026-03-11T16:23:07.980Z

NVD

Status : Deferred

Published: 2026-03-07T19:15:48.800

Modified: 2026-04-29T01:00:01.613

Link: CVE-2026-3669

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-16T10:45:26Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object