Vulnerability Name:

CVE-2021-22204 (CCN-200616)

Assigned:2021-04-22
Published:2021-04-22
Updated:2022-07-27
Summary:Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
CVSS v3 Severity:7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
7.2 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
6.8 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L)
6.3 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L/E:F/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-74
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2021-22204

Source: MISC
Type: Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/162558/ExifTool-DjVu-ANT-Perl-Injection.html

Source: MISC
Type: Exploit, Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/164768/GitLab-Unauthenticated-Remote-ExifTool-Command-Injection.html

Source: MISC
Type: Exploit, Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/164994/GitLab-13.10.2-Remote-Code-Execution.html

Source: MISC
Type: Exploit, Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/167038/ExifTool-12.23-Arbitrary-Code-Execution.html

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20210509 [CVE-2021-22204] ExifTool - Arbitrary code execution in the DjVu module when parsing a malicious image

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20210510 Re: [CVE-2021-22204] ExifTool - Arbitrary code execution in the DjVu module when parsing a malicious image

Source: XF
Type: UNKNOWN
exiftool-cve202122204-code-exec(200616)

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800

Source: CCN
Type: GitLab Web site
CVE-2021-22204

Source: CONFIRM
Type: Third Party Advisory
https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22204.json

Source: MISC
Type: Permissions Required, Third Party Advisory
https://hackerone.com/reports/1154542

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20210516 [SECURITY] [DLA 2663-1] libimage-exiftool-perl security update

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2021-e3d8833d36

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2021-88d24aa32b

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2021-de850ed71e

Source: CCN
Type: Packet Storm Security [05-12-2021]
ExifTool DjVu ANT Perl Injection

Source: CCN
Type: Packet Storm Security [11-04-2021]
GitLab Unauthenticated Remote ExifTool Command Injection

Source: CCN
Type: Packet Storm Security [11-17-2021]
GitLab 13.10.2 Remote Code Execution

Source: CCN
Type: Packet Storm Security [05-11-2022]
ExifTool 12.23 Arbitrary Code Execution

Source: CCN
Type: CYBERSECURITY & INFRASTRUCTURE SECURITY AGENCY
KNOWN EXPLOITED VULNERABILITIES CATALOG

Source: DEBIAN
Type: Third Party Advisory
DSA-4910

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [11-17-2021]

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [05-11-2022]

Source: CCN
Type: NPM Web site
exiftool-vendored

Source: CCN
Type: Rapid7 Vulnerability and Exploit Database [05-24-2021]
ExifTool DjVu ANT Perl injection

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2021-22204

Vulnerable Configuration:Configuration 1:
  • cpe:/a:exiftool_project:exiftool:*:*:*:*:*:*:*:* (Version >= 7.44 and < 12.24)

    • Configuration 2:
  • cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:fedoraproject:fedora:32:*:*:*:*:*:*:*
  • OR cpe:/o:fedoraproject:fedora:33:*:*:*:*:*:*:*
  • OR cpe:/o:fedoraproject:fedora:34:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:gitlab:gitlab:12.0:*:*:*:enterprise:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:103167
    P
    		Security update for perl-Image-ExifTool (Important)
    2021-05-10
    oval:org.opensuse.security:def:111376
    P
    		Security update for perl-Image-ExifTool (Important)
    2021-05-10
    oval:org.opensuse.security:def:93652
    P
    		Security update for perl-Image-ExifTool (Important)
    2021-05-10
    oval:org.opensuse.security:def:107031
    P
    		Security update for perl-Image-ExifTool (Important)
    2021-05-10
    oval:org.opensuse.security:def:96477
    P
    		Security update for perl-Image-ExifTool (Important)
    2021-05-10
    oval:org.opensuse.security:def:109824
    P
    		Security update for perl-Image-ExifTool (Important)
    2021-05-10
    oval:org.opensuse.security:def:100365
    P
    		Security update for perl-Image-ExifTool (Important)
    2021-05-10
    oval:org.opensuse.security:def:11209
    P
    		Security update for perl-Image-ExifTool (Important)
    2021-05-10
    BACK
    exiftool_project exiftool *
    debian debian linux 9.0
    debian debian linux 10.0
    fedoraproject fedora 32
    fedoraproject fedora 33
    fedoraproject fedora 34
    gitlab gitlab 12.0