CVE-2016-4811

MEDIUM

NTT Broadband Platform Japan Connected-free Wi-Fi <=1.15.1 (Android) & <=1.13.0 (iOS) - MITM Unauthenticated API Access

Title source: llm
STIX 2.1

Description

The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.15.1 and earlier for Android and 1.13.0 and earlier for iOS allows man-in-the-middle attackers to obtain API access via unspecified vectors.

References (5)

Core 5
Core References
Vendor Advisory x_refsource_confirm
http://jvn.jp/en/jp/JVN46888319/278948/index.html
Vendor Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN46888319/index.html
Vendor Advisory third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2016-000076

Scores

CVSS v3 5.6
EPSS 0.0078
EPSS Percentile 51.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Details

CWE
CWE-284
Status published
Products (2)
ntt-bp/japan_connected-free_wi-fi 1.13.0
ntt-bp/japan_connected-free_wi-fi 1.15.1
Published Jun 19, 2016
Tracked Since Feb 18, 2026