CVE-2024-32656

{"id": "CVE-2024-32656", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2024-04-22T23:15:50.817", "references": [{"url": "https://github.com/ant-media/Ant-Media-Server/commit/9cb38500729e0ff302da0290b9cfe1ec4dd6c764", "source": "security-advisories@github.com"}, {"url": "https://github.com/ant-media/Ant-Media-Server/security/advisories/GHSA-qwhw-hh9j-54f5", "source": "security-advisories@github.com"}, {"url": "https://github.com/ant-media/Ant-Media-Server/commit/9cb38500729e0ff302da0290b9cfe1ec4dd6c764", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/ant-media/Ant-Media-Server/security/advisories/GHSA-qwhw-hh9j-54f5", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-862"}]}], "descriptions": [{"lang": "en", "value": "Ant Media Server is live streaming engine software. A local privilege escalation vulnerability in present in versions 2.6.0 through 2.8.2 allows any unprivileged operating system user account to escalate privileges to the root user account on the system. This vulnerability arises from Ant Media Server running with Java Management Extensions (JMX) enabled and authentication disabled on localhost on port 5599/TCP. This vulnerability is nearly identical to the local privilege escalation vulnerability CVE-2023-26269 identified in Apache James. Any unprivileged operating system user can connect to the JMX service running on port 5599/TCP on localhost and leverage the MLet Bean within JMX to load a remote MBean from an attacker-controlled server. This allows an attacker to execute arbitrary code within the Java process run by Ant Media Server and execute code within the context of the `antmedia` service account on the system. Version 2.9.0 contains a patch for the issue. As a workaround, one may remove certain parameters from the `antmedia.service` file."}, {"lang": "es", "value": "Ant Media Server es un software de motor de transmisi\u00f3n en vivo. Una vulnerabilidad de escalada de privilegios local presente en las versiones 2.6.0 a 2.8.2 permite que cualquier cuenta de usuario del sistema operativo sin privilegios escale privilegios a la cuenta de usuario ra\u00edz del sistema. Esta vulnerabilidad surge cuando Ant Media Server se ejecuta con Java Management Extensions (JMX) habilitadas y la autenticaci\u00f3n deshabilitada en localhost en el puerto 5599/TCP. Esta vulnerabilidad es casi id\u00e9ntica a la vulnerabilidad de escalada de privilegios locales CVE-2023-26269 identificada en Apache James. Cualquier usuario de sistema operativo sin privilegios puede conectarse al servicio JMX que se ejecuta en el puerto 5599/TCP en localhost y aprovechar MLet Bean dentro de JMX para cargar un MBean remoto desde un servidor controlado por un atacante. Esto permite a un atacante ejecutar c\u00f3digo arbitrario dentro del proceso Java ejecutado por Ant Media Server y ejecutar c\u00f3digo dentro del contexto de la cuenta de servicio \"antmedia\" en el sistema. La versi\u00f3n 2.9.0 contiene un parche para el problema. Como workaround, se pueden eliminar ciertos par\u00e1metros del archivo `antmedia.service`."}], "lastModified": "2024-11-21T09:15:24.537", "sourceIdentifier": "security-advisories@github.com"}