Home

CVE-2015-5882

Description

The processor_set_tasks API implementation in Apple iOS before 9 allows local users to bypass an entitlement protection mechanism and obtain access to the task ports of arbitrary processes by leveraging root privileges.

Risk Information

Base Score
7.8
MODERATE
Vector
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.067

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.6 UpdateMac
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.6 Combo UpdateMac
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.5 UpdateMac
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.5 Combo UpdateMac
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.4 UpdateMac
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.4 Combo UpdateMac
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.3 UpdateMac
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.2 UpdateMac
Multiple vulnerabilities are fixed in OS X El Capitan 10.11.1 UpdateMac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-600753OS X El Capitan 10.11.6 Update
PATCH-600754OS X El Capitan 10.11.6 Combo Update
PATCH-600753OS X El Capitan 10.11.6 Update
PATCH-600754OS X El Capitan 10.11.6 Combo Update
PATCH-600753OS X El Capitan 10.11.6 Update
PATCH-600754OS X El Capitan 10.11.6 Combo Update
PATCH-600753OS X El Capitan 10.11.6 Update
PATCH-600753OS X El Capitan 10.11.6 Update
PATCH-600753OS X El Capitan 10.11.6 Update

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234