Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/15 1:25 a.m.6 views

CVE-2025-25286

Crayfish is a collection of Islandora 8 microservices, one of which, Homarus, provides FFmpeg as a microservice. Prior to Crayfish version 4.1.0, remote code execution may be possible in web-accessible installations of Homarus in certain configurations. The issue has been patched in...

9.8CVSS7.5AI score0.01006EPSS
Exploits0References1
Circl
Circl
added 2025/02/13 2:48 a.m.7 views

CVE-2025-25286

creationtimestamp| type| source ---|---|--- 2025-02-13 02:48:41+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/113994296257127308 2025-02-13 03:00:57+00:00| seen| Telegram/r090prh8PzjJEh682vcQnlDcJfJK4dwz44titdcQaapqPXQ 2025-02-13 04:25:09+00:00| seen|...

9.8CVSS5.7AI score0.01006EPSS
Exploits0References11
Vulnrichment
Vulnrichment
added 2025/02/13 12:36 a.m.8 views

CVE-2025-25286 Crayfish allows Remote Code Execution via Homarus Authorization header

Crayfish is a collection of Islandora 8 microservices, one of which, Homarus, provides FFmpeg as a microservice. Prior to Crayfish version 4.1.0, remote code execution may be possible in web-accessible installations of Homarus in certain configurations. The issue has been patched in...

9.8CVSS7.7AI score0.01006EPSS
Exploits0References2
CVE
CVE
added 2025/02/13 12:36 a.m.55 views

CVE-2025-25286

CVE-2025-25286 affects Crayfish’s Homarus FFmpeg microservice. Prior to Crayfish 4.1.0, remote code execution could occur in web-accessible installations in certain configurations. The issue has been patched in islandora/crayfish:4.1.0. Workarounds include preventing Internet access to Homarus or...

9.8CVSS7.7AI score0.01006EPSS
Exploits0References2
OSV
OSV
added 2025/02/13 12:36 a.m.8 views

CVE-2025-25286 Crayfish allows Remote Code Execution via Homarus Authorization header

Crayfish is a collection of Islandora 8 microservices, one of which, Homarus, provides FFmpeg as a microservice. Prior to Crayfish version 4.1.0, remote code execution may be possible in web-accessible installations of Homarus in certain configurations. The issue has been patched in...

9.8CVSS7.3AI score0.01006EPSS
Exploits0References4
Rows per page
Query Builder