CVE-2015-5748

Published: Aug 17, 2015Modified: May 6, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

The kernel in Apple OS X before 10.10.5 does not properly mount HFS volumes, which allows local users to cause a denial of service via a crafted volume.

Affected (3)

Products: Apple: Iphone Os, Safari, Mac Os X

3 products

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apple Iphone Os	Up to 8.4.1

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Apple Safari	Up to 8.0.8

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Up to 10.10.4

Related CWEs

CWE-17

References (16)

http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html

Source: product-security@apple.com

Vendor Advisory

http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html

Source: product-security@apple.com

Vendor Advisory

http://lists.apple.com/archives/security-announce/2015/Sep/msg00005.html

Source: product-security@apple.com

Vendor Advisory

http://www.securityfocus.com/bid/76340

Source: product-security@apple.com

http://www.securitytracker.com/id/1033276

Source: product-security@apple.com

https://support.apple.com/HT205212

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/HT205213

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/kb/HT205031

Source: product-security@apple.com

Vendor Advisory

http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html