Skip to main content

Software Update

2 CVEs product

Monthly

CVE-2016-1731 MEDIUM PATCH This Month

Apple Software Update before 2.2 on Windows does not use HTTPS, which makes it easier for man-in-the-middle attackers to spoof updates by modifying the client-server data stream. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Apple Information Disclosure Microsoft Software Update
NVD
CVSS 3.0
5.9
EPSS
0.2%
CVE-2015-5442 MEDIUM This Month

Unspecified vulnerability in HP Software Update before 5.005.002.002 allows local users to gain privileges via unknown vectors. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

HP Information Disclosure Software Update
NVD
CVSS 2.0
4.6
EPSS
0.1%
EPSS 0% CVSS 5.9
MEDIUM PATCH This Month

Apple Software Update before 2.2 on Windows does not use HTTPS, which makes it easier for man-in-the-middle attackers to spoof updates by modifying the client-server data stream. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Apple Information Disclosure Microsoft +1
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

Unspecified vulnerability in HP Software Update before 5.005.002.002 allows local users to gain privileges via unknown vectors. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

HP Information Disclosure Software Update
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy