CVE-2024-32656

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-32656
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-32656.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-32656
Aliases
Published
2024-04-22T23:15:50Z
Modified
2024-10-12T11:24:28.691412Z
Summary
[none]
Details

Ant Media Server is live streaming engine software. A local privilege escalation vulnerability in present in versions 2.6.0 through 2.8.2 allows any unprivileged operating system user account to escalate privileges to the root user account on the system. This vulnerability arises from Ant Media Server running with Java Management Extensions (JMX) enabled and authentication disabled on localhost on port 5599/TCP. This vulnerability is nearly identical to the local privilege escalation vulnerability CVE-2023-26269 identified in Apache James. Any unprivileged operating system user can connect to the JMX service running on port 5599/TCP on localhost and leverage the MLet Bean within JMX to load a remote MBean from an attacker-controlled server. This allows an attacker to execute arbitrary code within the Java process run by Ant Media Server and execute code within the context of the antmedia service account on the system. Version 2.9.0 contains a patch for the issue. As a workaround, one may remove certain parameters from the antmedia.service file.

References

Affected packages

Git / github.com/ant-media/ant-media-server

Affected ranges

Type
GIT
Repo
https://github.com/ant-media/ant-media-server
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed

Affected versions

ams-v.*

ams-v.1.0M1
ams-v.1.0RC

ams-v1.*

ams-v1.1
ams-v1.1.1
ams-v1.2.0
ams-v1.2.0-SNAPSHOT
ams-v1.2.2
ams-v1.2.3
ams-v1.2.4
ams-v1.2.5
ams-v1.2.6
ams-v1.3.0
ams-v1.3.0-SNAPSHOT
ams-v1.3.1
ams-v1.3.2
ams-v1.3.3
ams-v1.3.4
ams-v1.3.6.1
ams-v1.3.6.2
ams-v1.4.0
ams-v1.4.1
ams-v1.5.0
ams-v1.5.1
ams-v1.5.1.1
ams-v1.5.2
ams-v1.7.0
ams-v1.7.1
ams-v1.7.2
ams-v1.8.0
ams-v1.8.1
ams-v1.9.0
ams-v1.9.1

ams-v2.*

ams-v2.0.0
ams-v2.1.0
ams-v2.2.0
ams-v2.2.1
ams-v2.3.0
ams-v2.3.0-RC
ams-v2.3.1
ams-v2.3.2
ams-v2.3.3
ams-v2.3.3.1
ams-v2.4.0
ams-v2.4.0.2
ams-v2.4.1
ams-v2.4.2
ams-v2.4.2.1
ams-v2.4.3
ams-v2.5.0
ams-v2.5.1
ams-v2.5.3
ams-v2.6.0
ams-v2.6.1
ams-v2.6.2
ams-v2.6.3
ams-v2.7.0
ams-v2.8.0
ams-v2.8.1
ams-v2.8.2

red5+_1.*

red5+_1.0

release-1.*

release-1.6.0
release-1.6.1
release-1.6.2

Other

untagged-e09c2795e299b44bcb86

v1.*

v1.0.1_red5_plus
v1.0.2-M1
v1.0.2-RELEASE
v1.0.3-RELEASE
v1.0.4-RELEASE
v1.0.5-RELEASE
v1.0.6-RELEASE
v1.0.7-M1
v1.0.7-M10
v1.0.7-M2
v1.0.7-M3
v1.0.7-M4
v1.0.7-M5
v1.0.7-M6
v1.0.7-M7
v1.0.7-M8
v1.0.7-M9
v1.0.7-RELEASE
v1.0.7-SNAPSHOT
v1.0.8-M1
v1.0.8-M10
v1.0.8-M11
v1.0.8-M12
v1.0.8-M13
v1.0.8-M2
v1.0.8-M3
v1.0.8-M4
v1.0.8-M5
v1.0.8-M6
v1.0.8-M7
v1.0.8-M8
v1.0.8-M9
v1.0.8-RELEASE
v1.0.9-M1
v1.0.9-M2