Arbitrary Code Execution Vulnerability in ExifTool's DjVu File Format Parsing

Arbitrary Code Execution Vulnerability in ExifTool's DjVu File Format Parsing

CVE-2021-22204 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image

Learn more about our User Device Pen Test.