KDDI HOME SPOT CUBE devices prior to 2 allow remote malicious users to conduct clickjacking attacks via unspecified vectors.
kddi home_spot_cube_firmware 2.0