IBM5A5BB3664A78381FAC3A025ACA92292D943BEA549FD77483CCEEBCB7891D4077Security Bulletin: RabbitMQ vulnerability affect IBM Cloud Manager with OpenStack (CVE-2015-8786)
EPSS
Percentile
79.1%
Summary
IBM Cloud Manager has addressed vulnerability in RabbitMQ.
Vulnerability Details
CVE-ID: CVE-2015-8786 DESCRIPTION: RabbitMQ is vulnerable to a denial of service, caused by an error in the Management plugin. By sending a specially crafted request, a remote authenticated attacker could exploit this vulnerability to consume all available resources.
CVSS Base Score: 6.500
CVSS Temporal Score: https://exchange.xforce.ibmcloud.com/vulnerabilities/120093 for more information
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
Affected Products and Versions
IBM Cloud Manager with OpenStack 4.3.0 through 4.3.0.7
Remediation/Fixes
Product
| VRMF| APAR| Remediation/First Fix
—|—|—|—
IBM Cloud Manager with OpenStack| 4.3.0| None| IBM Cloud Manager with Openstack 4.3 for fix pack 8:
https://www-945.ibm.com/support/fixcentral/swg/selectFixes?product=ibm%2FOther+software%2FCloud+Manager+with+Openstack&fixids=4.3.0.8-IBM-CMWO-FP08&source=SAR&function=fixId&parent=ibm/Other%20software
Workarounds and Mitigations
None
Related
EPSS
Percentile
79.1%