CVE-2015-5833

high

Description

The Login Window component in Apple OS X before 10.11 does not ensure that the screen is locked at the intended time, which allows physically proximate attackers to obtain access by visiting an unattended workstation.

References

Advisories
More

http://www.securitytracker.com/id/1033703

http://www.securityfocus.com/bid/76908

https://support.apple.com/HT205267

http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html

Details

Source: Mitre, NVD

Published: 2015-10-09

Updated: 2025-04-12

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N