CRITICAL 9.1
GHSA-g6pc-6676-c23j
Remotion: arbitrary file write vulnerability
Details
remotion-dev remotion v4.0.409 was discovered to contain an arbitrary file write vulnerability.
Are you affected?
Enter the version of the package you're using.
Affected packages
References
- https://nvd.nist.gov/vuln/detail/CVE-2026-30121 [ADVISORY]
- https://github.com/remotion-dev/remotion/pull/6378 [WEB]
- https://github.com/EaEa0001/security-advisories/blob/main/CVE-2026-30121.md [WEB]
- https://github.com/remotion-dev/remotion [PACKAGE]
- https://github.com/remotion-dev/remotion/releases/tag/v4.0.410 [WEB]