Vulnerabilities > NTT BP

DATE CVE VULNERABILITY TITLE RISK
2016-06-19 CVE-2016-4811 Improper Access Control vulnerability in Ntt-Bp Japan Connected-Free Wi-Fi 1.13.0/1.15.1
The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.15.1 and earlier for Android and 1.13.0 and earlier for iOS allows man-in-the-middle attackers to obtain API access via unspecified vectors.
network
high complexity
ntt-bp CWE-284
5.1
2015-09-11 CVE-2015-5630 Cross-site Scripting vulnerability in Ntt-Bp Japan Connected-Free Wi-Fi
Cross-site scripting (XSS) vulnerability in the NTT Broadband Platform Japan Connected-free Wi-Fi application 1.6.0 and earlier for Android and 1.0.2 and earlier for iOS allows remote attackers to inject arbitrary web script or HTML via a crafted SSID.
network
ntt-bp CWE-79
4.3
2015-09-11 CVE-2015-5629 Permissions, Privileges, and Access Controls vulnerability in Ntt-Bp Japan Connected-Free Wi-Fi
The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.6.0 and earlier for Android and 1.0.2 and earlier for iOS allows attackers to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors.
network
ntt-bp CWE-264
6.8