CVE-2021-22204βExifTool Remote Code Execution Vulnerability
PUBLISHEDvulnerability record
2021-11-17 Β· last modified June 21, 2025
Metadata
Vulnerability Name
ExifTool Remote Code Execution Vulnerability
Description
Improper neutralization of user data in the DjVu file format in Exiftool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
Known To Be Used in Ransomware Campaigns?
Action
Apply updates per vendor instructions.