CVE-2015-5932

Apple OS X <10.11.1 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-5932. PoCs published by jndok.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2015-5932, targeting a kernel vulnerability in macOS. The exploit leverages return-oriented programming (ROP) to escalate privileges to root and spawn a shell.

Description

The kernel in Apple OS X before 10.11.1 allows local users to gain privileges by leveraging an unspecified "type confusion" during Mach task processing.

Exploits (1)

nomisec WORKING POC 4 stars
by jndok · poc
https://github.com/jndok/tpwn-bis

This repository contains a proof-of-concept exploit for CVE-2015-5932, targeting a kernel vulnerability in macOS. The exploit leverages return-oriented programming (ROP) to escalate privileges to root and spawn a shell.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Complex
Reliability
Reliable
Target: macOS kernel (specific version not specified)
No auth needed
Prerequisites: Access to a vulnerable macOS system · Compilation of the exploit code
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Vendor Advisory vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT205375

Scores

EPSS 0.0075
EPSS Percentile 50.5%

Details

Status published
Products (1)
apple/mac_os_x < 10.11.0
Published Oct 23, 2015
Tracked Since Feb 18, 2026