CVE-2015-3775Improper Authentication in Apple MAC OS X

CWE-287Improper Authentication3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 86.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple OS X Yosemite V10.10.5 AND Security Update 2015-006
Timeline
PublishedAug 16
Latest updateMay 17

Description

Apple OS X before 10.10.5 does not properly implement authentication, which allows local users to obtain admin privileges via unspecified vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDapple/mac_os_x10.10.4

🔴Vulnerability Details

1
GHSA
GHSA-fhqx-hm87-5jcm: Apple OS X before 102022-05-17

📋Vendor Advisories

1
Apple
CVE-2015-3775: OS X Yosemite v10.10.5 and Security Update 2015-006