CVE-2021-22204

HIGH CISA KEV
Published Apr 23, 20215y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published Apr 23, 2021 5y ago
Last Modified Jun 17, 2026 2w ago
KEV Listed Nov 17, 2021 4y ago
KEV Due Dec 1, 2021 1674d overdue

Description

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required None
User Interaction Required
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

CISA Known Exploited Overdue 1674d
Added
Nov 17, 2021
Due
Dec 1, 2021

Apply updates per vendor instructions.

Exploit & Patch Status
Actively Exploited (KEV)
Patch Available

Weaknesses 1

CWE-94 Improper Control of Generation of Code (Code Injection) Injection

Affected Products 6

VendorProductVersionRange
exiftool_projectexiftool*≥7.44  –  <12.24
debiandebian_linux9.0any
debiandebian_linux10.0any
fedoraprojectfedora32any
fedoraprojectfedora33any
fedoraprojectfedora34any

References 15

  • packetstormsecurity.com http://packetstormsecurity.com/files/162558/ExifTool-DjVu-ANT-Perl-Injection.html
    ExploitThird Party AdvisoryVDB Entry
  • packetstormsecurity.com http://packetstormsecurity.com/files/164768/GitLab-Unauthenticated-Remote-ExifTool-Command-Injection.html
    ExploitThird Party AdvisoryVDB Entry
  • packetstormsecurity.com http://packetstormsecurity.com/files/164994/GitLab-13.10.2-Remote-Code-Execution.html
    ExploitThird Party AdvisoryVDB Entry
  • packetstormsecurity.com http://packetstormsecurity.com/files/167038/ExifTool-12.23-Arbitrary-Code-Execution.html
    ExploitThird Party AdvisoryVDB Entry
  • openwall.com http://www.openwall.com/lists/oss-security/2021/05/09/1
    Mailing ListThird Party Advisory
  • openwall.com http://www.openwall.com/lists/oss-security/2021/05/10/5
    Mailing ListThird Party Advisory
  • github.com https://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800
    Patch
  • gitlab.com https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22204.json
    Third Party Advisory
  • hackerone.com https://hackerone.com/reports/1154542
    ExploitIssue TrackingThird Party Advisory
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2021/05/msg00018.html
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDKDLJLBTBBR66OOPXSXCG2PQRM5KCZL/
    Release Notes
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6UOBPU3LSHAPRRJNISNVXZ5DSUIALLV/
    Release Notes
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U4RF6PJCJ6NQOVJJJF6HN6BORUQVIXY6/
    Release Notes
  • cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-22204
    US Government Resource
  • debian.org https://www.debian.org/security/2021/dsa-4910
    Mailing ListThird Party Advisory

Remediation

  • github.com https://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800
    Patch