Enphase Installer Toolkit versions 3.27.0 has hard coded credentials embedded in binary code in the Android application. An attacker can exploit this and gain access to sensitive information. CreditsOBSWCY3F reported this vulnerability to CISA.Referenceshttps://www.cisa.gov/news-events/ics-advisories/icsa-23-171-02
