CVE-2021-22204

CVE Database · CVE-2021-22204

CVE-2021-22204

· MEDIUMAnalyzed

CVSS v3.1

6.8

EPSS

99.98%

Published

Apr 23, 2021

Modified

Nov 3, 2025

CISA Known Exploited Vulnerability

Added: 2021-11-17 · Due: 2021-12-01

Apply updates per vendor instructions.

Public PoC / Exploit (10)

All weaponized →

Exploit-DBExifTool 12.23 - Arbitrary Code Execution TrickestTrickest PoC index GitHub PoCconvisolabs/CVE-2021-22204-exiftool★96 GitHub PoCUNICORDev/exploit-CVE-2021-22204★52 GitHub PoCAssassinUKG/CVE-2021-22204★27 GitHub PoCse162xg/CVE-2021-22204★12 GitHub PoCbilkoh/POC-CVE-2021-22204★8 GitHub PoCAkash7350/CVE-2021-22204★4 GitHub PoCPenTestical/CVE-2021-22204★3 GitHub PoCtrganda/CVE-2021-22204★3

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

Weaknesses (CWE)

CWE-94CWE-94

Affected Products (6)

exiftool_project · exiftool (up to 12.24)vulnerable

debian · debian_linuxvulnerable

fedoraproject · fedoravulnerable

References (20)

http://packetstormsecurity.com/files/162558/ExifTool-DjVu-ANT-Perl-Injection.html

ExploitThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/164768/GitLab-Unauthenticated-Remote-ExifTool-Command-Injection.html

ExploitThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/164994/GitLab-13.10.2-Remote-Code-Execution.html

ExploitThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/167038/ExifTool-12.23-Arbitrary-Code-Execution.html

ExploitThird Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs