Vulnerability Description
The Login Window component in Apple OS X before 10.11 does not ensure that the screen is locked at the intended time, which allows physically proximate attackers to obtain access by visiting an unattended workstation.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | <= 10.10.5 |
Related Weaknesses (CWE)
References
- http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlVendor Advisory
- http://www.securityfocus.com/bid/76908Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033703Third Party AdvisoryVDB Entry
- https://support.apple.com/HT205267Vendor Advisory
- http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlVendor Advisory
- http://www.securityfocus.com/bid/76908Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033703Third Party AdvisoryVDB Entry
- https://support.apple.com/HT205267Vendor Advisory
FAQ
What is CVE-2015-5833?
CVE-2015-5833 is a vulnerability with a CVSS score of 7.2 (HIGH). The Login Window component in Apple OS X before 10.11 does not ensure that the screen is locked at the intended time, which allows physically proximate attackers to obtain access by visiting an unatte...
How severe is CVE-2015-5833?
CVE-2015-5833 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-5833?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X.