CVE-2015-7063Apple MAC OS X vulnerability

CWE-2643 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 85.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple OS X EL Capitan 10.11.2 Security Update 2015-005 Yosemite AND Security Update 20
Timeline
PublishedDec 11
Latest updateMay 17

Description

The kernel loader in EFI in Apple OS X before 10.11.2 allows local users to gain privileges via a crafted pathname.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDapple/mac_os_x10.11.1

🔴Vulnerability Details

1
GHSA
GHSA-v678-xmpv-m6j4: The kernel loader in EFI in Apple OS X before 102022-05-17

📋Vendor Advisories

1
Apple
CVE-2015-7063: OS X El Capitan 10.11.2, Security Update 2015-005 Yosemite, and Security Update 2015-008 Mavericks