CVE-2019-7676

A weak password vulnerability was discovered in Enphase Envoy R3.*.*. One can login via TCP port 8888 with the admin password for the admin account.

References

https://github.com/pudding2/enphase-energy/blob/master/weak_password_1.png

https://github.com/pudding2/enphase-energy/blob/master/weak_password_2.png

https://github.com/pudding2/enphase-energy/blob/master/weak_password.txt