Low severity3.3NVD Advisory· Published Jun 19, 2016· Updated May 6, 2026

CVE-2016-1862

Description

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1860.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

The Intel Graphics Driver in Apple OS X before 10.11.5 allows a crafted application to disclose kernel memory layout, aiding further attacks.

Vulnerability

The Intel Graphics Driver component in Apple OS X El Capitan versions 10.11 through 10.11.4 contains a memory corruption issue that leads to the disclosure of kernel memory content. An attacker can exploit this by running a specially crafted application on the system. This vulnerability is distinct from CVE-2016-1860 [1].

Exploitation

An attacker must trick a user into running a malicious application, or have the ability to execute arbitrary code in user space. The crafted app triggers the memory corruption in the Intel Graphics Driver, causing the kernel to leak memory layout information. No additional privileges or network access are required beyond local execution.

Impact

Successful exploitation allows the attacker to obtain sensitive kernel memory-layout information. This disclosure does not directly provide code execution but can be used to bypass kernel address space layout randomization (KASLR) and facilitate further exploitation of other kernel vulnerabilities.

Mitigation

Apple addressed this issue in OS X El Capitan v10.11.5, released on May 18, 2016. Users should update to this version or later via the Mac App Store. No workarounds are documented for unpatched systems.

References

About the security content of OS X El Capitan v10.11.5 and Security Update 2016-003 - Apple Support

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Apple Inc./Mac Os X
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Range: <=10.11.4
Apple Inc./OS Xllm-fuzzy
Range: <10.11.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2016/May/msg00004.htmlnvdVendor Advisory
support.apple.com/HT206567nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.214
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000