Lucene search
K

7 matches found

CNNVD
CNNVD
added 2023/06/20 12:0 a.m.8 views

Enphase Energy Installer Toolkit 信任管理问题漏洞

Enphase Energy Installer Toolkit is an installer toolkit from Enphase Energy, USA. Enphase Energy Installer Toolkit version 3.27.0 suffers from a trust management issue vulnerability that stems from hard-coded credentials embedded in the binary code of an Android application. An attacker could...

8.6CVSS7.5AI score0.00571EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/06/20 12:0 a.m.6 views

Enphase Energy Envoy 操作系统命令注入漏洞

The Enphase Energy Envoy is a gateway device for connecting smart home devices from Enphase Energy, USA. An operating system command injection vulnerability exists in Enphase Energy Envoy version D7.0.88, which stems from susceptibility to command injection attacks. An attacker can exploit the...

9.8CVSS8.6AI score0.01111EPSS
Exploits0References2
CNVD
CNVD
added 2021/06/18 12:0 a.m.6 views

Unspecified Vulnerability in Enphase Energy Envoy

The Enphase Energy Envoy is a gateway device for connecting smart home devices from Enphase Energy USA. The Enphase Envoy suffers from a security vulnerability that stems from a custom PAM module for user authentication that bypasses traditional user authentication, which uses passwords derived...

7.5CVSS7.4AI score0.01339EPSS
Exploits1References1
CNVD
CNVD
added 2021/06/18 12:0 a.m.7 views

Unspecified vulnerability in Enphase Energy Envoy (CNVD-2021-45766)

The Enphase Energy Envoy is a gateway device for connecting smart home devices from Enphase Energy USA. A security vulnerability exists in the Enphase Energy Envoy. The vulnerability stems from the default admin password being set to the last 6 digits of the serial number. The serial number can b...

9.8CVSS7.2AI score0.02231EPSS
Exploits1References1
CNVD
CNVD
added 2021/06/18 12:0 a.m.19 views

Enphase Energy Envoy Command Injection Vulnerability

Enphase Energy Envoy is a gateway device used to connect smart home devices from Enphase Energy, Inc. A command injection vulnerability exists in Enphase Energy Envoy, which originates from the update-start feature in the installer update-start, and can be exploited remotely to execute arbitrary...

8.8CVSS3.7AI score0.03076EPSS
Exploits1References1
CNVD
CNVD
added 2021/06/18 12:0 a.m.7 views

Enphase Energy Envoy Trust Management Issues Vulnerabilities

The Enphase Energy Envoy is a gateway device for connecting smart home devices from Enphase Energy USA. The Enphase Energy Envoy has a trust management issue vulnerability that stems from the installer and Enphase accounts having hard-coded web panel login passwords, which are hard-coded values...

5.3CVSS6.8AI score0.01603EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/06/16 12:0 a.m.5 views

Enphase Envoy 安全漏洞

The Enphase Energy Envoy is a gateway device for connecting smart home devices from Enphase Energy USA. A security vulnerability exists in the Enphase Energy Envoy. The vulnerability stems from the default admin password being set to the last 6 digits of the serial number. The serial number can b...

9.8CVSS5.6AI score0.02231EPSS
Exploits1References3
Rows per page
Query Builder