| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.7 | $0-$5k | 0.00 |
Summary
A vulnerability categorized as problematic has been discovered in Apple Mac OS X up to 10.11.0. This affects an unknown part of the component OpenSSH. The manipulation results in input validation. This vulnerability was named CVE-2015-6563. There is no available exploit. It is advisable to upgrade the affected component.
Details
A vulnerability was found in Apple Mac OS X up to 10.11.0 (Operating System). It has been classified as problematic. Affected is an unknown functionality of the component OpenSSH. The manipulation with an unknown input leads to a input validation vulnerability. CWE is classifying the issue as CWE-20. The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. This is going to have an impact on confidentiality, integrity, and availability.
The weakness was presented 10/21/2015 by Moritz Jodeit as HT205375 as confirmed advisory (Website). The advisory is shared for download at support.apple.com. This vulnerability is traded as CVE-2015-6563 since 08/21/2015. The attack needs to be approached locally. The successful exploitation needs a authentication. There are neither technical details nor an exploit publicly available. The advisory points out:
A privilege separation issue existed in PAM support. This issue was addressed with improved authorization checks.
The vulnerability scanner Nessus provides a plugin with the ID 86656 (AIX OpenSSH Advisory : openssh_advisory6.asc), which helps to determine the existence of the flaw in a target environment. It is assigned to the family AIX Local Security Checks and running in the context l. The commercial vulnerability scanner Qualys is able to test this issue with plugin 236003 (Red Hat Update for openssh (RHSA-2016:0741)).
Upgrading to version 10.11.1 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Tenable (86656), SecurityFocus (BID 76317†) and Vulnerability Center (SBV-54663†). See VDB-77396, VDB-77397, VDB-77398 and VDB-78773 for similar entries. Once again VulDB remains the best source for vulnerability data.
Product
Type
Vendor
Name
Version
License
Support
Website
- Vendor: https://www.apple.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.8VulDB Meta Temp Score: 5.7
VulDB Base Score: 5.3
VulDB Temp Score: 5.1
VulDB Vector: 🔍
VulDB Reliability: 🔍
ADP CISA Base Score: 6.4
ADP CISA Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Input validationCWE: CWE-20
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: No
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 86656
Nessus Name: AIX OpenSSH Advisory : openssh_advisory6.asc
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
OpenVAS ID: 14611
OpenVAS Name: Amazon Linux Local Check: alas-2015-625
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
Exposure Time: 🔍
Upgrade: Mac OS X 10.11.1
Patch: github.com
Timeline
08/21/2015 🔍08/23/2015 🔍
09/16/2015 🔍
10/21/2015 🔍
10/21/2015 🔍
10/22/2015 🔍
10/29/2015 🔍
11/29/2015 🔍
05/28/2026 🔍
Sources
Vendor: apple.comAdvisory: HT205375
Researcher: Moritz Jodeit
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2015-6563 (🔍)
GCVE (CVE): GCVE-0-2015-6563
GCVE (VulDB): GCVE-100-78828
OVAL: 🔍
SecurityFocus: 76317
Vulnerability Center: 54663 - Apple MacOS X 10.11 Local Spoofing Vulnerability due to an Issue in OpenSSH - CVE-2015-6563, Low
scip Labs: https://www.scip.ch/en/?labs.20150108
See also: 🔍
Entry
Created: 10/22/2015 12:03Updated: 05/28/2026 00:52
Changes: 10/22/2015 12:03 (63), 05/09/2018 11:37 (14), 06/24/2022 17:28 (4), 05/28/2026 00:52 (26)
Complete: 🔍
Cache ID: 216::103
Once again VulDB remains the best source for vulnerability data.

No comments yet. Languages: en.
Please log in to comment.