Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.37 views

Ubuntu 16.04 ESM : ExifTool vulnerability (USN-4987-2)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-4987-2 advisory. USN-4987-1 fixed a vulnerability in ExifTool. This update provides the corresponding update for Ubuntu 16.04 ESM. Tenable has extracted the preceding description...

7.8CVSS7.5AI score0.99981EPSS
Exploits39References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:45 a.m.1 views

SUSE CVE-2021-22204

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image...

7.8CVSS7.9AI score0.99981EPSS
Exploits39References4
Packet Storm
Packet Storm
added 2022/05/11 12:0 a.m.320 views

ExifTool 12.23 Arbitrary Code Execution

Exploit Title: ExifTool 12.23 - Arbitrary Code Execution Date: 04/30/2022 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://exiftool.org/ Software Link: https://github.com/exiftool/exiftool/archive/refs/tags/12.23.zip Version: 7.44-12.23 Tested on: ExifTool 12.23 Debian CVE:...

7.8CVSS0.3AI score0.99981EPSS
Exploits39
Exploit DB
Exploit DB
added 2022/05/11 12:0 a.m.388 views

ExifTool 12.23 - Arbitrary Code Execution

Exploit Title: ExifTool 12.23 - Arbitrary Code Execution Date: 04/30/2022 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://exiftool.org/ Software Link: https://github.com/exiftool/exiftool/archive/refs/tags/12.23.zip Version: 7.44-12.23 Tested on: ExifTool 12.23 Debian CVE:...

7.8CVSS7.6AI score0.99981EPSS
Exploits39
Ubuntu
Ubuntu
added 2022/02/08 9:24 p.m.89 views

USN-4987-2: ExifTool vulnerability

USN-4987-1 fixed a vulnerability in ExifTool. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: It was discovered that ExifTool did not properly sanitize user data for the DjVu file format. An attacker could use this vulnerability to cause a DoS or...

7.8CVSS7.8AI score0.99981EPSS
Exploits39
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/17 12:0 a.m.24 views

ExifTool Remote Code Execution Vulnerability

Improper neutralization of user data in the DjVu file format in Exiftool versions 7.44 and up allows arbitrary code execution when parsing the malicious image...

7.8CVSS8.1AI score0.99981EPSS
In wildExploits39
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.143 views

Ubuntu 18.04 LTS / 20.04 LTS : ExifTool vulnerability (USN-4987-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-4987-1 advisory. It was discovered that ExifTool did not properly sanitize user data for the DjVu file format. An attacker could use this vulnerability to cause a DoS ...

7.8CVSS8AI score0.99981EPSS
Exploits39References2
CNVD
CNVD
added 2021/05/11 12:0 a.m.23 views

DjVuLibre Denial of Service Vulnerability

DjVuLibre is an open source implementation of the DjVu computer file format, which includes a DjVu file viewer, browser plug-in, DjVu file decoder/encoder and other utilities.DjVuLibre suffers from a denial-of-service vulnerability that could be exploited by an attacker to cause an application to...

7.8CVSS4.7AI score0.00944EPSS
Exploits0References1
Veracode
Veracode
added 2021/04/25 1:28 a.m.47 views

Remote Code Execution (RCE)

perl-image-exiftool is vulnerable to remote code execution. A lack of proper neutralization of user data in the DjVu file format in ExifTool allows an attacker to arbitrary code execution by sending a malicious image jpg, tiff, mp4 and many more...

7.8CVSS4.8AI score0.99981EPSS
Exploits39References21Affected Software4
NVD
NVD
added 2021/04/23 6:15 p.m.19 views

CVE-2021-22204

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image...

7.8CVSS0.99981EPSS
Exploits39References15
OSV
OSV
added 2021/04/23 6:15 p.m.1 views

DEBIAN-CVE-2021-22204

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image...

7.8CVSS8.2AI score0.99981EPSS
Exploits39References1
Prion
Prion
added 2021/04/23 6:15 p.m.41 views

Input validation

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image...

6.8CVSS7.9AI score0.99981EPSS
Exploits39References14Affected Software3
Vulnrichment
Vulnrichment
added 2021/04/23 5:22 p.m.4 views

CVE-2021-22204

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image...

6.8CVSS7.9AI score0.99981EPSS
Exploits39References14
ATTACKERKB
ATTACKERKB
added 2021/04/23 12:0 a.m.122 views

CVE-2021-22204

Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.8CVSS8.1AI score0.99981EPSS
In wildExploits39References18
Positive Technologies
Positive Technologies
added 2021/04/01 12:0 a.m.3 views

PT-2021-5828

Name of the Vulnerable Software and Affected Versions ExifTool versions 7.44 and up Description The issue is related to improper neutralization of user data in the DjVu file format, allowing arbitrary code execution when parsing malicious images. This could enable a remote attacker to access...

7.8CVSS8.7AI score0.99981EPSS
Exploits44References99
Rows per page
Query Builder