Lucene search

K

Exiftool Security Vulnerabilities

cve
cve

CVE-2022-23935

lib/Image/ExifTool.pm in ExifTool before 12.38 mishandles a $file =~ /|$/ check, leading to command...

7.8CVSS

7.6AI Score

0.001EPSS

2022-01-25 06:15 AM
84
3
cve
cve

CVE-2021-22204

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious...

7.8CVSS

8AI Score

0.89EPSS

2021-04-23 06:15 PM
1228
In Wild
103
cve
cve

CVE-2018-20211

ExifTool 8.32 allows local users to gain privileges by creating a %TEMP%\par-%username%\cache-exiftool-8.32 folder with a victim's username, and then copying a Trojan horse ws32_32.dll file into this new folder, aka DLL Hijacking. NOTE: 8.32 is an obsolete version from 2010 (9.x was released...

7.8CVSS

7.6AI Score

0.001EPSS

2019-01-02 06:29 PM
19