CVE-2016-4811
MEDIUMNTT Broadband Platform Japan Connected-free Wi-Fi <=1.15.1 (Android) & <=1.13.0 (iOS) - MITM Unauthenticated API Access
Title source: llmDescription
The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.15.1 and earlier for Android and 1.13.0 and earlier for iOS allows man-in-the-middle attackers to obtain API access via unspecified vectors.
References (5)
Core 5
Core References
Vendor Advisory x_refsource_confirm
http://jvn.jp/en/jp/JVN46888319/278948/index.html
Various Sources x_refsource_confirm
https://play.google.com/store/apps/details?id=com.nttbp.jfw
Vendor Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN46888319/index.html
Various Sources x_refsource_confirm
https://itunes.apple.com/app/japan-connected-free-wi-fi/id810838196
Vendor Advisory third-party-advisory
x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2016-000076
Scores
CVSS v3
5.6
EPSS
0.0078
EPSS Percentile
51.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Details
CWE
CWE-284
Status
published
Products (2)
ntt-bp/japan_connected-free_wi-fi
1.13.0
ntt-bp/japan_connected-free_wi-fi
1.15.1
Published
Jun 19, 2016
Tracked Since
Feb 18, 2026