CVE-2021-22204 — Actively Exploited: Exiftool (Perl)
Improper neutralization of user data in the DjVu file format in Exiftool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
| CVE ID | CVE-2021-22204 |
|---|---|
| Vendor | Perl |
| Product | Exiftool |
| Vulnerability name | ExifTool Remote Code Execution Vulnerability |
| Date added | 2021-11-17 |
| Remediation due | 2021-12-01 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | Improper neutralization of user data in the DjVu file format in Exiftool versions 7.44 and up allows arbitrary code execution when parsing the malicious image |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →