exploitDog

GHSA-j6vr-qgcv-8h6m

Опубликовано: 20 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.6

Описание

Enphase Installer Toolkit versions 3.27.0 has hard coded credentials embedded in binary code in the Android application. An attacker can exploit this and gain access to sensitive information.

Enphase Installer Toolkit versions 3.27.0 has hard coded credentials embedded in binary code in the Android application. An attacker can exploit this and gain access to sensitive information.

Ссылки

EPSS

Процентиль: 28%

0.00102

Низкий

8.6 High

CVSS3

CVE ID

Дефекты

CWE-798

Связанные уязвимости

CVE-2023-32274

CVSS3: 8.6

nvd

больше 2 лет назад

Enphase Installer Toolkit versions 3.27.0 has hard coded credentials embedded in binary code in the Android application. An attacker can exploit this and gain access to sensitive information.

EPSS

Процентиль: 28%

0.00102

Низкий

8.6 High

CVSS3

CVE ID

Дефекты

CWE-798