Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2021-22204

Perl | ExiftoolAdded 2021-11-17Remediation Deadline 2021-12-01

ExifTool Remote Code Execution Vulnerability

Improper neutralization of user data in the DjVu file format in Exiftool versions 7.44 and up allows arbitrary code execution when parsing the malicious image

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-95

References