vulnerability

Ubuntu: (Multiple Advisories) (CVE-2021-22204): ExifTool vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Apr 23, 2021	Jun 11, 2021	Apr 16, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Apr 23, 2021

Added

Jun 11, 2021

Modified

Apr 16, 2026

Description

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image

Solutions

ubuntu-pro-upgrade-libimage-exiftool-perlubuntu-upgrade-libimage-exiftool-perl

References

CVE-2021-22204
https://attackerkb.com/topics/CVE-2021-22204
CWE-94
DEBIAN-DSA-4910
EUVD-EUVD-2021-9350
NVD-CVE-2021-22204
UBUNTU-USN-4987-1
UBUNTU-USN-4987-2
https://euvd.enisa.europa.eu/vulnerability/EUVD-2021-9350

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report