Arbitrary Code Execution Vulnerability in ExifTool's DjVu File Format Parsing
CVE-2021-22204 · HIGH Severity
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
Learn more about our User Device Pen Test.