Unrated severityNVD Advisory· Published Aug 17, 2015· Updated May 6, 2026

CVE-2015-5774

Description

Buffer overflow in IOHIDFamily in Apple iOS before 8.4.1 and OS X before 10.10.5 allows local users to gain privileges via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A buffer overflow in IOHIDFamily on Apple iOS and OS X allows local users to escalate privileges via unspecified vectors.

Vulnerability

A buffer overflow vulnerability exists in the IOHIDFamily component of Apple iOS before 8.4.1 and OS X before 10.10.5. The issue can be triggered by local users via unspecified vectors, leading to memory corruption. Affected versions include iOS 8.4 and earlier, and OS X Yosemite 10.10.4 and earlier.

Exploitation

Exploitation requires local access to the system. The attacker must be able to execute code or interact with the IOHIDFamily subsystem. The exact exploitation steps are not disclosed, but the buffer overflow can be leveraged to gain elevated privileges.

Impact

Successful exploitation allows a local attacker to gain elevated privileges, potentially leading to full system compromise. The impact includes arbitrary code execution in the kernel context, enabling the attacker to bypass security restrictions.

Mitigation

Apple addressed this vulnerability in iOS 8.4.1 [2] and OS X Yosemite 10.10.5 [1]. Users should update to the latest versions. No workarounds are available.

References

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Apple Inc./Iphone Os
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Range: <=8.4
Apple Inc./Mac Os X
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Range: <=10.10.4
Apple Inc./iOSllm-fuzzy
Range: <8.4.1
Apple Inc./OS Xllm-fuzzy
Range: <10.10.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2015/Aug/msg00001.htmlnvdVendor Advisory
lists.apple.com/archives/security-announce/2015/Aug/msg00002.htmlnvdVendor Advisory
support.apple.com/kb/HT205030nvdVendor Advisory
support.apple.com/kb/HT205031nvdVendor Advisory
www.securityfocus.com/bid/76343nvd
www.securitytracker.com/id/1033275nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000