CVE-2025-25286P2CRITICALCVSS 9.8fixed in 4.1.02025-02-13
CVE-2025-25286 [CRITICAL] CWE-150 CVE-2025-25286: Crayfish is a collection of Islandora 8 microservices, one of which, Homarus, provides FFmpeg as a m
Crayfish is a collection of Islandora 8 microservices, one of which, Homarus, provides FFmpeg as a microservice. Prior to Crayfish version 4.1.0, remote code execution may be possible in web-accessible installations of Homarus in certain configurations. The issue has been patched in `islandora/crayfish:4.1.0`. Some workarounds are available. The e
ghsanvdosv