Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2015-7078Apple MAC OS X vulnerability

4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.3%
top 47.34%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Apple MAC OS XApple OS X EL Capitan 10.11.2 Security Update 2015-005 Yosemite AND Security Update 20
Timeline
PublishedDec 11
Latest updateMay 17

Description

Use-after-free vulnerability in Hypervisor in Apple OS X before 10.11.2 allows local users to gain privileges via vectors involving VM objects.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDapple/mac_os_x10.11.1

🔴Vulnerability Details

1
GHSA
GHSA-wj97-qrwc-99mj: Use-after-free vulnerability in Hypervisor in Apple OS X before 102022-05-17

💥Exploits & PoCs

1
Exploit-DB
Apple Mac OSX Kernel - Hypervisor Driver Use-After-Free2016-01-28

📋Vendor Advisories

1
Apple
CVE-2015-7078: OS X El Capitan 10.11.2, Security Update 2015-005 Yosemite, and Security Update 2015-008 Mavericks