CVE-2015-8461

Name: CVE-2015-8461
Creator: NVD / NIST
Published: 2015-12-16T15:59:02.57+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 4.85%

Last modified Jun 17, 2026

CVE-2015-8461 is a vulnerability of currently unknown severity. Race condition in resolver.c in named in ISC BIND 9.9.8 before 9.9.8-P2 and 9.10.3 before 9.10.3-P2 allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via unspecified vectors.. EPSS estimates a 4.85% chance of exploitation in the next 30 days.

Description

Race condition in resolver.c in named in ISC BIND 9.9.8 before 9.9.8-P2 and 9.10.3 before 9.10.3-P2 allows remote attackers to cause a denial of service (INSIST assertion failure and daemon exit) via unspecified vectors.

Metrics

EPSS Probability

4.85%

90.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-362

Affected Software

Vendor	Product	Versions	Update
Isc	Bind	8.4.7	—
Isc	Bind	9.0	—
Isc	Bind	9.0.1	—
Isc	Bind	9.1	—
Isc	Bind	9.1.1	—
Isc	Bind	9.1.2	—
Isc	Bind	9.1.3	—
Isc	Bind	9.2	—
Isc	Bind	9.2.0	—
Isc	Bind	9.2.1	—
Isc	Bind	9.2.2	—
Isc	Bind	9.2.3	—
Isc	Bind	9.2.4	—
Isc	Bind	9.2.5	—
Isc	Bind	9.2.6	—
Isc	Bind	9.2.7	—
Isc	Bind	9.3	—
Isc	Bind	9.3.0	—
Isc	Bind	9.3.1	—
Isc	Bind	9.3.2	—
Isc	Bind	9.3.3	—
Isc	Bind	9.4	—
Isc	Bind	9.4.0	—
Isc	Bind	9.4.1	—
Isc	Bind	9.4.2	—
Isc	Bind	9.4.3	—
Isc	Bind	9.5	—
Isc	Bind	9.5.0	—
Isc	Bind	9.5.1	—
Isc	Bind	9.5.2	—
Isc	Bind	9.5.3	—
Isc	Bind	9.6	—
Isc	Bind	9.6.0	—
Isc	Bind	9.6.1	—
Isc	Bind	9.6.2	—
Isc	Bind	9.6.3	—
Isc	Bind	9.7.0	—
Isc	Bind	9.7.1	—
Isc	Bind	9.7.2	—
Isc	Bind	9.7.3	—
Isc	Bind	9.7.4	—
Isc	Bind	9.7.5	—
Isc	Bind	9.7.6	—
Isc	Bind	9.7.7	—
Isc	Bind	9.8.0	—
Isc	Bind	9.8.1	—
Isc	Bind	9.8.2	B1
Isc	Bind	9.8.3	—
Isc	Bind	9.8.4	—
Isc	Bind	9.8.5	—

Showing 50 of 64 affected configurations. See NVD for the full list.

References

Timeline

Published: Dec 16, 2015
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2015-8461?

How severe is CVE-2015-8461?

Severity scoring for CVE-2015-8461 is pending analysis. The EPSS model estimates a 4.85% probability of exploitation in the next 30 days.

How do I fix CVE-2015-8461?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2015-8461?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST