A weak password vulnerability was discovered in Enphase Envoy R3.. . One can login via TCP port 8888 with the admin password for the admin account.
7.2CVSS
7AI Score
0.002EPSS
XSS exists in Enphase Envoy R3.. via the profileName parameter to the /home URI on TCP port 8888.
6.1CVSS
5.9AI Score
0.001EPSS
A directory traversal vulnerability was discovered in Enphase Envoy R3.. via images/, include/, include/js, or include/css on TCP port 8888.
9.8CVSS
9.4AI Score
0.002EPSS