An issue was discovered on Enphase Envoy R3.x and D4.x devices. There are hardcoded web-panel login passwords for the installer and Enphase accounts. The passwords for these accounts are hardcoded values derived from the MD5 hash of the username and serial number mixed with some static strings. The serial number can be retrieved by an unauthenticated user at /info.xml. These passwords can be easily calculated by an attacker; users are unable to change these passwords.
References
Link | Resource |
---|---|
https://enphase.com/en-us/products-and-services/envoy-and-combiner | Product Vendor Advisory |
https://medium.com/stage-2-security/can-solar-controllers-be-used-to-generate-fake-clean-energy-credits-4a7322e7661a | Exploit Third Party Advisory |
https://stage2sec.com | Third Party Advisory |
https://enphase.com/en-us/products-and-services/envoy-and-combiner | Product Vendor Advisory |
https://medium.com/stage-2-security/can-solar-controllers-be-used-to-generate-fake-clean-energy-credits-4a7322e7661a | Exploit Third Party Advisory |
https://stage2sec.com | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 05:18
Type | Values Removed | Values Added |
---|---|---|
References | () https://enphase.com/en-us/products-and-services/envoy-and-combiner - Product, Vendor Advisory | |
References | () https://medium.com/stage-2-security/can-solar-controllers-be-used-to-generate-fake-clean-energy-credits-4a7322e7661a - Exploit, Third Party Advisory | |
References | () https://stage2sec.com - Third Party Advisory |
24 Jun 2021, 12:08
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://enphase.com/en-us/products-and-services/envoy-and-combiner - Product, Vendor Advisory | |
References | (MISC) https://stage2sec.com - Third Party Advisory | |
References | (MISC) https://medium.com/stage-2-security/can-solar-controllers-be-used-to-generate-fake-clean-energy-credits-4a7322e7661a - Exploit, Third Party Advisory | |
CPE | cpe:2.3:o:enphase:envoy_firmware:r3.0:*:*:*:*:*:*:* cpe:2.3:h:enphase:envoy:-:*:*:*:*:*:*:* cpe:2.3:o:enphase:envoy_firmware:d4.0:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 5.3 |
CWE | CWE-798 |
16 Jun 2021, 19:17
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-06-16 19:15
Updated : 2024-11-21 05:18
NVD link : CVE-2020-25752
Mitre link : CVE-2020-25752
CVE.ORG link : CVE-2020-25752
JSON object : View
Products Affected
enphase
- envoy_firmware
- envoy
CWE
CWE-798
Use of Hard-coded Credentials