io.antmedia:ant-media-server@1.7.0 vulnerabilities
latest version
2.12.0
first published
6 years ago
latest version published
1 months ago
licenses detected
- [1.2.0,)
package manager
Direct Vulnerabilities
Known vulnerabilities in the io.antmedia:ant-media-server package. This does not include vulnerabilities belonging to this package’s dependencies.
How to fix?
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
io.antmedia:ant-media-server is a media server supporting RTMP, RTSP, WebRTC and Adaptive Bitrate. Affected versions of this package are vulnerable to Out-of-bounds Read due to insufficient input sanitization in the logging mechanism. An attacker can include user-controllable data, such as identifiers or other sensitive information, in log entries without restrictions. How to fix Out-of-bounds Read? Upgrade | [,2.9.0) |
io.antmedia:ant-media-server is a media server supporting RTMP, RTSP, WebRTC and Adaptive Bitrate. Affected versions of this package are vulnerable to Improper Authorization due to improper handling of HTTP header based authorization. An attacker can execute non-administrative API calls that should be restricted to authorized users by manipulating HTTP headers. How to fix Improper Authorization? There is no fixed version for | [0,) |