High severity7.5NVD Advisory· Published May 20, 2016· Updated Jun 17, 2026
CVE-2016-1842
CVE-2016-1842
Description
MapKit in Apple iOS before 9.3.2, OS X before 10.11.5, and watchOS before 2.2.1 does not use HTTPS for shared links, which allows remote attackers to obtain sensitive information by sniffing the network for HTTP traffic.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*range: <=2.2
- (no CPE)range: <2.2.1
- Range: <9.3.2
- Range: <10.11.5
Patches
Vulnerability mechanics
References
7- lists.apple.com/archives/security-announce/2016/May/msg00002.htmlnvdMailing ListVendor Advisory
- lists.apple.com/archives/security-announce/2016/May/msg00003.htmlnvdMailing ListVendor Advisory
- lists.apple.com/archives/security-announce/2016/May/msg00004.htmlnvdMailing ListVendor Advisory
- www.securitytracker.com/id/1035890nvdThird Party AdvisoryVDB Entry
- support.apple.com/HT206566nvdVendor Advisory
- support.apple.com/HT206567nvdVendor Advisory
- support.apple.com/HT206568nvdVendor Advisory
News mentions
0No linked articles in our index yet.