Ant-Media Ant-Media-Server vulnerabilities

CVE-2024-32656 [HIGH] CWE-862 Ant Media Server vulnerable to local privilege escalation Ant Media Server vulnerable to local privilege escalation Ant Media Server is live streaming engine software. A local privilege escalation vulnerability in present in versions 2.6.0 through 2.8.2 allows any unprivileged operating system user account to escalate privileges to the root user account on the system. This vulnerability arises from Ant Media Server running with Java Management Extensions (JMX) enab

CVE-2023-26269 [HIGH] CWE-862 CVE-2023-26269: Apache James server version 3.7.3 and earlier provides a JMX management service without authenticati Apache James server version 3.7.3 and earlier provides a JMX management service without authentication by default. This allows privilege escalation by a malicious local user. Administrators are advised to disable JMX, or set up a JMX password. Note that version 3.7.4 onward will set up a JMX password automatically for Guice users.