CVE-2026-3682

Name of the Vulnerable Software and Affected Versions welovemedia FFmate versions up to 2.0.15

Description A security issue has been identified in welovemedia FFmate. The vulnerability resides in the Execute function within the /internal/service/ffmpeg/ffmpeg.go file and allows for argument injection. This issue can be exploited remotely. The details of the exploit have been publicly disclosed. The vendor was informed of this disclosure but did not provide a response.

Recommendations Versions prior to 2.0.15 should be used. As a temporary workaround, consider restricting access to the Execute function until a patch is available.