CVE-2021-22204
HIGH CISA KEV
Published Apr 23, 20215y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
Published Apr 23, 2021 5y ago
Last Modified Jun 17, 2026 2w ago
KEV Listed Nov 17, 2021 4y ago
KEV Due Dec 1, 2021 1674d overdue
Description
Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Attack Vector Local
Attack Complexity Low
Privileges Required None
User Interaction Required
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
CISA Known Exploited Overdue 1674d
- Added
- Nov 17, 2021
- Due
- Dec 1, 2021
Apply updates per vendor instructions.
Exploit & Patch Status
Actively Exploited (KEV)
Patch Available
Weaknesses 1
CWE-94 Improper Control of Generation of Code (Code Injection) Injection
Affected Products 6
| Vendor | Product | Version | Range |
|---|---|---|---|
| exiftool_project | exiftool | * | ≥7.44 – <12.24 |
| debian | debian_linux | 9.0 | any |
| debian | debian_linux | 10.0 | any |
| fedoraproject | fedora | 32 | any |
| fedoraproject | fedora | 33 | any |
| fedoraproject | fedora | 34 | any |
References 15
- packetstormsecurity.com http://packetstormsecurity.com/files/162558/ExifTool-DjVu-ANT-Perl-Injection.html
- packetstormsecurity.com http://packetstormsecurity.com/files/164768/GitLab-Unauthenticated-Remote-ExifTool-Command-Injection.html
- packetstormsecurity.com http://packetstormsecurity.com/files/164994/GitLab-13.10.2-Remote-Code-Execution.html
- packetstormsecurity.com http://packetstormsecurity.com/files/167038/ExifTool-12.23-Arbitrary-Code-Execution.html
- openwall.com http://www.openwall.com/lists/oss-security/2021/05/09/1
- openwall.com http://www.openwall.com/lists/oss-security/2021/05/10/5
- github.com https://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800
- gitlab.com https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22204.json
- hackerone.com https://hackerone.com/reports/1154542
- lists.debian.org https://lists.debian.org/debian-lts-announce/2021/05/msg00018.html
- lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDKDLJLBTBBR66OOPXSXCG2PQRM5KCZL/
- lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6UOBPU3LSHAPRRJNISNVXZ5DSUIALLV/
- lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U4RF6PJCJ6NQOVJJJF6HN6BORUQVIXY6/
- cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-22204
- debian.org https://www.debian.org/security/2021/dsa-4910
Remediation
- github.com https://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800