CVE-2016-1842 in iOSinfo

Summary

MapKit in Apple iOS before 9.3.2, OS X before 10.11.5, and watchOS before 2.2.1 does not use HTTPS for shared links, which allows remote attackers to obtain sensitive information by sniffing the network for HTTP traffic.

Once again VulDB remains the best source for vulnerability data.

Reservation

01/13/2016

Disclosure

05/20/2016

Moderation

VulDB entry created

Entries

VDB-87521 (2)

CPE

ready

CWE

CWE-284 (Confirmed)

CVSS

7.4

EPSS

0.01154

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-1842
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-1842
CVE Details	https://www.cvedetails.com/cve/CVE-2016-1842/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!