CVE-2020-25752

Published: Jun 16, 2021Modified: Nov 21, 2024

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

An issue was discovered on Enphase Envoy R3.x and D4.x devices. There are hardcoded web-panel login passwords for the installer and Enphase accounts. The passwords for these accounts are hardcoded values derived from the MD5 hash of the username and serial number mixed with some static strings. The serial number can be retrieved by an unauthenticated user at /info.xml. These passwords can be easily calculated by an attacker; users are unable to change these passwords.

Affected (2)

Products: Enphase: Envoy Firmware

1 product

Configuration A

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Enphase Envoy Firmware	Version d4.0
Enphase Envoy Firmware	Version r3.0

Running on/with	Platform Versions
Enphase Envoy	All versions

Related CWEs

Use of Hard-coded Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

References (6)

https://enphase.com/en-us/products-and-services/envoy-and-combiner

Source: cve@mitre.org

ProductVendor Advisory

https://medium.com/stage-2-security/can-solar-controllers-be-used-to-generate-fake-clean-energy-credits-4a7322e7661a

Source: cve@mitre.org

ExploitThird Party Advisory

https://stage2sec.com

Source: cve@mitre.org

Third Party Advisory

https://enphase.com/en-us/products-and-services/envoy-and-combiner

Source: af854a3a-2127-422b-91ae-364da2661108

ProductVendor Advisory

https://medium.com/stage-2-security/can-solar-controllers-be-used-to-generate-fake-clean-energy-credits-4a7322e7661a

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://stage2sec.com

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.