Vulnerability Database

317,182

Total vulnerabilities in the database

CVE-2015-1130

The XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to bypass authentication and obtain admin privileges via unspecified vectors.

Published: Apr 10, 2015
Updated: Nov 9, 2025
CVE: CVE-2015-1130
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-254
CWE-59

Affected Software
References

Software	From	Fixed in
apple / mac_os_x	-	10.10.3

http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html
http://www.osvdb.org/120418
http://www.securityfocus.com/bid/73982
http://www.securitytracker.com/id/1032048
https://support.apple.com/HT204659
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-1130
https://www.exploit-db.com/exploits/36692/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo