Unrated severityNVD Advisory· Published Jul 3, 2015· Updated May 6, 2026

CVE-2015-3698

Description

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696, CVE-2015-3697, CVE-2015-3699, CVE-2015-3700, CVE-2015-3701, and CVE-2015-3702.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Buffer overflow in Intel Graphics Driver in OS X prior to 10.10.4 allows local privilege escalation.

Vulnerability

Buffer overflow in the Intel Graphics Driver component of Apple OS X before version 10.10.4 allows local users to gain privileges. The vulnerability exists in the graphics driver, and the affected versions are OS X Yosemite v10.10 to v10.10.3 and OS X Mavericks v10.9.5 (if applicable). The official description [1] indicates this is one of several similar vulnerabilities.

Exploitation

Exploitation requires local access to the system. The attacker must have the ability to execute code on the machine. The exact attack vector is not disclosed by Apple, but it involves triggering a buffer overflow in the Intel Graphics Driver. No user interaction beyond running a malicious program is needed.

Impact

Successful exploitation allows a local attacker to gain elevated privileges, potentially obtaining root or kernel-level access. This can lead to full control of the system, including the ability to install malware, modify system files, or exfiltrate data.

Mitigation

Apple released OS X Yosemite v10.10.4 which addresses this vulnerability. Users should update to the latest version. No workarounds are provided. The vulnerability is not listed on CISA's Known Exploited Vulnerabilities (KEV) catalog.

References

About the security content of OS X Yosemite v10.10.4 and Security Update 2015-005 - Apple Support

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Apple Inc./Mac Os X
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Range: <=10.10.3
Apple Inc./OS Xllm-fuzzy
Range: <10.10.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2015/Jun/msg00002.htmlnvdPatchVendor Advisory
support.apple.com/kb/HT204942nvdVendor Advisory
www.securityfocus.com/bid/75493nvd
www.securitytracker.com/id/1032760nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000