Unrated severityNVD Advisory· Published Jul 3, 2015· Updated May 6, 2026

CVE-2015-3696

Description

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3697, CVE-2015-3698, CVE-2015-3699, CVE-2015-3700, CVE-2015-3701, and CVE-2015-3702.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Buffer overflow in Intel Graphics Driver in OS X before 10.10.4 allows local users to gain privileges via unspecified vectors.

Vulnerability

A buffer overflow exists in the Intel Graphics Driver component of Apple OS X. This vulnerability affects OS X Mavericks v10.9.5 and OS X Yosemite v10.10 through v10.10.3. The overflow can be triggered by local users through unspecified vectors, as disclosed by Apple [1]. No further technical details are publicly available due to Apple's disclosure policy [1].

Exploitation

An attacker requires local access to the system to exploit this vulnerability. No authentication beyond the initial user session is necessary, and no user interaction is needed. The exact sequence of steps is not disclosed, but the attack vector involves triggering a buffer overflow in the Intel Graphics Driver [1].

Impact

Successful exploitation allows the attacker to gain elevated privileges, likely root, on the affected system. This can lead to full compromise of the confidentiality, integrity, and availability of the system [1].

Mitigation

The vulnerability is fixed in OS X Yosemite v10.10.4 and Security Update 2015-005, released on July 3, 2015 [1]. Users should update to the latest supported version of OS X. No workarounds are documented. This CVE is not listed in CISA's Known Exploited Vulnerabilities catalog [1].

References

About the security content of OS X Yosemite v10.10.4 and Security Update 2015-005 - Apple Support

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Apple Inc./Mac Os X
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Range: <=10.10.3
Apple Inc./OS Xllm-fuzzy
Range: <10.10.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlnvdPatchVendor Advisory
support.apple.com/kb/HT204942nvdVendor Advisory
www.securityfocus.com/bid/75493nvd
www.securitytracker.com/id/1032760nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000