A critical vulnerability in ffmpeg allows remote code execution via crafted media files, posing a significant security risk to systems that use ffmpeg for media processing.

A vulnerability in ffmpeg allows remote code execution via a crafted media file https://www.securityweek.com/ffmpeg-pixelsmash-flaw-allows-rce-on-video-players-media-servers-nas-appliances/ This affects anything that would even try to generate a *thumbnail*, and that includes your file browser, your fedi server, etc etc etc.

ffmpeg remote code execution vuln https://jfrog.com/blog/pixelsmash-critical-ffmpeg-vulnerability-turns-media-files-into-weapons/