Medium severity5.9NVD Advisory· Published Mar 14, 2016· Updated Jun 17, 2026
CVE-2016-1731
CVE-2016-1731
Description
Apple Software Update before 2.2 on Windows does not use HTTPS, which makes it easier for man-in-the-middle attackers to spoof updates by modifying the client-server data stream.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:apple:software_update:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:software_update:*:*:*:*:*:*:*:*range: <=2.1.3.127
- (no CPE)range: <2.2
Patches
Vulnerability mechanics
References
3- support.apple.com/kb/HT206091nvdPatchVendor Advisory
- www.securityfocus.com/bid/84283nvd
- www.securitytracker.com/id/1035256nvd
News mentions
0No linked articles in our index yet.