Every CVE whose affected-product data names Apple Software Update, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2016-1731 — CVSS 5.9 (medium): Apple Software Update before 2.2 on Windows does not use HTTPS, which makes it easier for man-in-the-middle attackers to spoof updates by…
CVE-2007-0463 — CVSS 5.0 (medium): Format string vulnerability in Apple Software Update 2.0.5 on Mac OS X 10.4.8 allows remote attackers to cause a denial of service…