High severity7.5OSV Advisory· Published Nov 29, 2024· Updated Jun 17, 2026
CVE-2024-35371
CVE-2024-35371
Description
Ant-Media-Serverv2.8.2 is affected by Improper Output Neutralization for Logs. The vulnerability stems from insufficient input sanitization in the logging mechanism. Without proper filtering or validation, user-controllable data, such as identifiers or other sensitive information, can be included in log entries without restrictions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
io.antmedia:ant-media-serverMaven | < 2.9.0 | 2.9.0 |
Affected products
2- Range: ams-v.1.0M1, ams-v.1.0RC, ams-v1.1, …
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-2gx6-qrpp-c4p3ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-35371ghsaADVISORY
- gist.github.com/1047524396/4eb17867f2e375f4824274c5e7b4d384nvdWEB
- github.com/ant-media/Ant-Media-Server/blob/ams-v2.8.2/src/main/java/io/antmedia/rest/RestServiceBase.javanvdWEB
- github.com/ant-media/ant-media-server/commit/4d4763bd4fd06e515c19544e5170ca0f34c9ce45nvdWEB
News mentions
0No linked articles in our index yet.