Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-22204
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
exiftool 代码注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
exiftool是一个应用软件。使元数据更易于访问。 ExifTool 7.44版本及之前版本存在代码注入漏洞,该漏洞允许在解析恶意图像时任意执行代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
ExifToolExifTool >=7.44, <12.24 -
II. Public POCs for CVE-2021-22204
#POC DescriptionSource LinkShenlong Link
1Python exploit for the CVE-2021-22204 vulnerability in Exiftoolhttps://github.com/convisolabs/CVE-2021-22204-exiftoolPOC Details
2exiftool arbitrary code execution vulnerabilityhttps://github.com/se162xg/CVE-2021-22204POC Details
3POC for exiftool vuln (CVE-2021-22204).https://github.com/bilkoh/POC-CVE-2021-22204POC Details
4Nonehttps://github.com/PenTestical/CVE-2021-22204POC Details
5Nonehttps://github.com/AssassinUKG/CVE-2021-22204POC Details
6Modification of gitlab exploit anything under 13.10https://github.com/ph-arm/CVE-2021-22204-GitlabPOC Details
7reverse shell execution exploit of CVE 22204https://github.com/Asaad27/CVE-2021-22204-RSEPOC Details
8Nonehttps://github.com/trganda/CVE-2021-22204POC Details
9A complete PoC for CVE-2021-22204 exiftool RCE https://github.com/0xBruno/CVE-2021-22204POC Details
10exiftool exploithttps://github.com/mr-tuhin/CVE-2021-22204-exiftoolPOC Details
11Exploit for CVE-2021-22204 (ExifTool) - Arbitrary Code Executionhttps://github.com/UNICORDev/exploit-CVE-2021-22204POC Details
12Nonehttps://github.com/Akash7350/CVE-2021-22204POC Details
13Challenge based on CVE-2021-22204 where users send a malicious file to a web application to gain RCEhttps://github.com/battleofthebots/dejavuPOC Details
14CVE-2021-22204 exploit scripthttps://github.com/cc3305/CVE-2021-22204POC Details
15Nonehttps://github.com/sameep0/CVE-2021-22204POC Details
16CVE-2021-22204 exiftool rcehttps://github.com/Roronoawjd/CVE-2021-22204POC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2021-22204
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: ExifTool
V. Comments for CVE-2021-22204

No comments yet

Leave a comment