io.antmedia:ant-media-server

Maven3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting io.antmedia:ant-media-serverpage 1 of 1

CVE-2024-32656HIGHCVSS 7.8EG 7.8✓ Fixed in 2.9.0
2024-04-22
vulnerable: 2.6.0 ... 2.8.2 (9 versions)
Ant Media Server is live streaming engine software. A local privilege escalation vulnerability in present in versions 2.6.0 through 2.8.2 allows any unprivileged operating system user account to escalate privileges to the root user account…
CVE-2024-3462MEDIUMCVSS 5.4EG 6.5
2024-05-14
vulnerable: 1.2.0 ... 2.9.0 (58 versions)
Ant Media Server Community Edition in a default configuration is vulnerable to an improper HTTP header based authorization, leading to a possible use of non-administrative API calls reserved only for authorized users. All versions up to…
CVE-2024-35371HIGHCVSS 7.5EG 7.5✓ Fixed in 2.9.0
2024-11-29
vulnerable: 1.2.0 ... 2.8.2 (57 versions)
Ant-Media-Serverv2.8.2 is affected by Improper Output Neutralization for Logs. The vulnerability stems from insufficient input sanitization in the logging mechanism. Without proper filtering or validation, user-controllable data, such as i…

Check whether io.antmedia:ant-media-server is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for io.antmedia:ant-media-server CVEs against the assets you own.

Start Free Scan →