Medium severity6.5NVD Advisory· Published Dec 9, 2016· Updated Jun 17, 2026
CVE-2015-8786
CVE-2015-8786
Description
The Management plugin in RabbitMQ before 3.6.1 allows remote authenticated users with certain privileges to cause a denial of service (resource consumption) via the (1) lengths_age or (2) lengths_incr parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4(expand)+ 1 more
- (no CPE)
- (no CPE)range: <3.6.1
- cpe:2.3:a:pivotal_software:rabbitmq:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
9- www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlnvdPatchThird Party Advisory
- github.com/rabbitmq/rabbitmq-management/issues/97nvdIssue TrackingPatch
- github.com/rabbitmq/rabbitmq-server/releases/tag/rabbitmq_v3_6_1nvdIssue TrackingPatch
- www.securityfocus.com/bid/91508nvdThird Party AdvisoryVDB Entry
- rhn.redhat.com/errata/RHSA-2017-0226.htmlnvd
- rhn.redhat.com/errata/RHSA-2017-0530.htmlnvd
- rhn.redhat.com/errata/RHSA-2017-0531.htmlnvd
- rhn.redhat.com/errata/RHSA-2017-0532.htmlnvd
- rhn.redhat.com/errata/RHSA-2017-0533.htmlnvd
News mentions
0No linked articles in our index yet.