CVE STALKER

CVE-2021-22204

CVSS
DESCRIPTIONImproper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
HEAT SCORE1206

WORDS

TWEETS

DATE TWEETS USER
2021-06-19 11:30:13From Fix to Exploit: Arbitrary Code Execution for CVE-2021-22204 in ExifTool. Get a walkthrough of how to independe… https://t.co/X6uttBpaZZ https://twitter.com/i/web/status/1406212033352069120BilekSimon
2021-06-18 07:20:09From Fix to Exploit: Arbitrary Code Execution for CVE-2021-22204 in ExifTool. Get a walkthrough of how to independe… https://t.co/UGZpCd3NFY https://twitter.com/i/web/status/1405785916313006089PMR_Lauterbach
2021-06-17 22:20:03From Fix to Exploit: Arbitrary Code Execution for CVE-2021-22204 in ExifTool. Get a walkthrough of how to independe… https://t.co/Uwkw8C7BAz https://twitter.com/i/web/status/1405650718149660675annamsui
2021-06-17 17:12:52From Fix to Exploit: Arbitrary Code Execution for CVE-2021-22204 in ExifTool. Get a walkthrough of how to independe… https://t.co/k7hkiwmHVM https://twitter.com/i/web/status/1405572190444027905BilekSimon
2021-06-16 15:10:40CVE-2021-22204 https://t.co/uYkVp11zQ9 #HarsiaInfo https://har-sia.info/CVE-2021-22204.htmlHar_sia
2021-06-16 13:20:03From Fix to Exploit: Arbitrary Code Execution for CVE-2021-22204 in ExifTool. Get a walkthrough of how to independe… https://t.co/9BSBDOo7n8 https://twitter.com/i/web/status/1405152721078919169PMR_Lauterbach
2021-06-16 08:30:04From Fix to Exploit: Arbitrary Code Execution for CVE-2021-22204 in ExifTool. Get a walkthrough of how to independe… https://t.co/psGtZE74qk https://twitter.com/i/web/status/1405080010948431874PMR_Lauterbach
2021-06-16 07:41:50From Fix to Exploit: Arbitrary Code Execution for CVE-2021-22204 in ExifTool. Get a walkthrough of how to independe… https://t.co/pLbWlHgQQN https://twitter.com/i/web/status/1405065350643814402BilekSimon
2021-06-15 18:10:13From Fix to Exploit: Arbitrary Code Execution for CVE-2021-22204 in ExifTool. Get a walkthrough of how to independe… https://t.co/utgFsPRrNG https://twitter.com/i/web/status/1404861296625913859axelconrad
2021-06-03 03:50:06ExifTool の脆弱性に注意(CVE-2021-22204): ExifTool*1*2 に脆弱性(CVE-2021-22204)が見つかっていたのでメモ。特定の画像を... https://t.co/sogMDkZ77S https://blog.cles.jp/item/12497?utm_source=rss?utm_source=SocialDoghsur
2021-05-31 23:40:05@fasthm00 @PentesterLab CVE-2021-22204 is already in. A few more to come :)snyff
2021-05-31 23:00:04A lot of people publishing cool bugs in images manipulation recently. After CVE-2021-22204, it feels kind of deja vu (DjVu)... 🥁🥁🥁snyff
2021-05-29 17:30:06Glad I will not have to write this article: that’s exactly how I went through exiftool CVE-2021-22204, except my fu… https://t.co/ZQ6wH9Jxd7 https://twitter.com/i/web/status/1398691178128842758Agarri_FR
2021-05-27 13:02:13@cybercdh TIL that exiftool has a CVE ... ExifTool CVE-2021-22204 - Arbitrary Code Execution https://t.co/MYTi2Jqg0V https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.htmlJCyberSec_
2021-05-24 13:30:06A case study on: CVE-2021-22204 – Exiftool RCE. By @dutragustavop https://t.co/c5jL5O6tOX https://bit.ly/2SqlP0oconviso
2021-05-20 15:40:08Shout out to @wcbowling! 👏 Learn more about the ExifTool bug (CVE-2021-22204) discovered while contributing to ou… https://t.co/Q69Lq9vqC0 https://twitter.com/i/web/status/1395401685967773700gitlab
2021-05-20 15:30:10ExifTool CVE-2021-22204 - Arbitrary Code Execution https://t.co/Iaeqc6zVhR https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.html0xfeL1x
2021-05-18 17:10:08ExifTool CVE-2021-22204 (Arbitrary Code Execution) seems to be a serious one. https://t.co/Zk9Ve854AU https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.htmlRetoKromer
2021-05-18 13:01:52CVE-2021-22204 An Image Speaks a Thousand RCEs: The Tale of Reversing an ExifTool CVE https://t.co/8A2HRIl6SW https://amalmurali47.medium.com/an-image-speaks-a-thousand-rces-the-tale-of-reversing-an-exiftool-cve-585f4f040850autumn_good_35
2021-05-18 11:20:06ExifTool CVE-2021-22204 - Arbitrary Code Execution https://t.co/6ZcoSuR0Qs… #ExifTool #CVE #CyberSecurity #Infosec… https://t.co/rDW4qgwNft http://devcraft.io/2021/05/04/exi https://twitter.com/i/web/status/1394613524773617665FrankSEC42
2021-05-18 06:50:36W00t ! ExifTool CVE-2021-22204 - Arbitrary Code Execution is going to be useful to troll in the CTFs I'm designing😜 https://t.co/iQKLRk1ZaK https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.htmlzackhimself
2021-05-17 20:10:23ExifTool CVE-2021-22204 - Arbitrary Code Execution | https://t.co/cv379MRE6d https://t.co/ujjvrfu1T9 http://devcraft.io https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.htmlSecurityblog
2021-05-17 10:00:05ExifTool CVE-2021-22204 - Arbitrary Code Execution https://t.co/stykouSnIS #ExifTool #CVE #CyberSecurity #Infosec https://t.co/Lb01EEQ1LT https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.htmlptracesecurity
2021-05-17 07:20:06#ExifTool CVE-2021-22204 - Arbitrary Code Execution https://t.co/feyn5TOZ7c #CyberSecurity #infosec #PenTest https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.htmlCibersec_
2021-05-17 01:10:10🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/gVeD4MAZHe https://twitter.com/i/web/status/1394095433119670276threatintelctr
2021-05-16 18:30:08CVE-2021-22204 https://t.co/uYkVp11zQ9 #HarsiaInfo https://har-sia.info/CVE-2021-22204.htmlHar_sia
2021-05-16 15:30:04CVE-2021-22204 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allow… https://t.co/WRdDaGvi7i https://twitter.com/i/web/status/1393950945524867072reconshell
2021-05-16 13:10:06🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/DK0PymlDxa https://twitter.com/i/web/status/1393914228872908804threatintelctr
2021-05-16 12:40:05🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/aoaiVFrioh https://twitter.com/i/web/status/1393906680765816834threatintelctr
2021-05-15 19:40:03@wcbowling did such a great job with CVE-2021-22204. This is affecting so many commercial forensic tools. I was abl… https://t.co/nnDgWcgm3r https://twitter.com/i/web/status/1393652285914353664vinopaljiri
2021-05-15 19:10:07@wcbowling did such a great job with CVE-2021-22204. This is affecting so many commercial forensic tools. I was abl… https://t.co/geOErVQcKM https://twitter.com/i/web/status/1393643212661735433vinopaljiri
2021-05-14 21:20:19@RealTryHackMe Any idea about creating a room for CVE-2021-22204.VickyChawla6
2021-05-14 21:10:11Here’s a writeup of the recent ExifTool bug (CVE-2021-22204) I discovered while working on the #bugbounty program… https://t.co/KGFcNH4ntG https://twitter.com/i/web/status/1393311625709441024wcbowling
2021-05-13 22:10:17A CTF-style walkthrough of the recent Exiftool arbitrary code execution vuln (CVE-2021-22204)… https://t.co/7kd9svFT8h https://twitter.com/i/web/status/1392963016149307395SecurityCTF
2021-05-13 15:40:05CVE-2021-22204 - Recreating a critical bug in ExifTool, no Perl smarts required. https://t.co/IxJadjIegF https://blog.bricked.tech/posts/exiftool/axcheron
2021-05-13 09:10:05A CTF-style walkthrough of the recent Exiftool arbitrary code execution vuln (CVE-2021-22204): netsec https://t.co/3zwHgqY8Hg https://aeternusmalus.wordpress.com/2021/05/13/a-ctf-style-walkthrough-of-the-recent-exiftool-arbitrary-code-execution-vuln-cve-2021-22204-netsec/0bvi0usrabb1t
2021-05-13 04:40:07A CTF-style walkthrough of the recent Exiftool arbitrary code execution vuln (CVE-2021-22204) https://t.co/HffB2CH1fP https://www.reddit.com/r/netsec/comments/nan5ao/a_ctfstyle_walkthrough_of_the_recent_exiftool/Dinosn
2021-05-12 19:30:04GitHub - se162xg/CVE-2021-22204 - https://t.co/3m6uIyo4QM https://github.com/se162xg/CVE-2021-22204piedpiper1616
2021-05-12 19:00:10New post: "A CTF-style walkthrough of the recent Exiftool arbitrary code execution vuln (CVE-2021-22204)" https://t.co/TYXM08f47L https://ift.tt/3eE8hHxMyinfosecfeed
2021-05-12 19:00:04A CTF-style walkthrough of the recent Exiftool arbitrary code execution vuln (CVE-2021-22204) https://t.co/ctCAixEWwd https://blog.bricked.tech/posts/exiftool/_r_netsec
2021-05-12 16:40:08🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/EWCkADZsJx https://twitter.com/i/web/status/1392517546377715713threatintelctr
2021-05-12 12:00:04CVE-2021-22204 - Recreating a critical bug in ExifTool, no Perl smarts required. https://t.co/1UBO5cGq9H #poc #cve #writeup https://blog.bricked.tech/posts/exiftool/KillSwitchX7
2021-05-11 12:20:06CVE-2021-22204 Уязвимость выполнения произвольного кода ExifTool https://t.co/C0DYMAHCSF https://www.pwnwiki.org/index.php?title=CVE-2021-22204_ExifTool%E4%BB%BB%E6%84%8F%E4%BB%A3%E7%A2%BC%E5%9F%B7%E8%A1%8C%E6%BC%8F%E6%B4%9E/ruPwnwikiorg_RU
2021-05-11 10:00:05CVE-2021-22204 ExifTool任意代碼執行漏洞 https://t.co/6wJPi9cxmO https://www.pwnwiki.org/index.php?title=CVE-2021-22204_ExifTool%E4%BB%BB%E6%84%8F%E4%BB%A3%E7%A2%BC%E5%9F%B7%E8%A1%8C%E6%BC%8F%E6%B4%9Epwnwikiorg
2021-05-11 02:20:06Looks like the ExifTool CVE-2021-22204 cat is out of the bag at https://t.co/EYQkXd7k3k. Big ups to @wcbowling on a… https://t.co/wt8FsGW7ve https://www.openwall.com/lists/oss-security/2021/05/10/5 https://twitter.com/i/web/status/1391940451582763016justinsteven
2021-05-11 00:00:05CVE-2021-22204 | exiftool bug | jpg reverse shell https://t.co/lIW0yLucoO https://youtu.be/tqxLfo9X9rYgustavorobertux
2021-05-10 21:40:08Re: [CVE-2021-22204] ExifTool - Arbitrary code execution in the DjVu module when parsing a malicious image: Posted… https://t.co/0N11TM2lA7 https://twitter.com/i/web/status/1391868542786555906oss_security
2021-05-10 18:40:27🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/EAendqwi4t https://twitter.com/i/web/status/1391822958998478849threatintelctr
2021-05-10 10:10:08🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/brBteE4Bxf https://twitter.com/i/web/status/1391694635290959874threatintelctr
2021-05-10 08:00:14🔴DEBIAN🔴 Múltiples vulnerabilidades de severidad alta en productos DEBIAN: CVE-2021-22204,CVE-2021-25215 Más inf… https://t.co/GEw4nFWMY1 https://twitter.com/i/web/status/1391663046116904969GrupoICA_Ciber
2021-05-10 01:10:03🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/WNWVotKxwm https://twitter.com/i/web/status/1391558708589744136threatintelctr
2021-05-09 12:40:03🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/28mIeuW11D https://twitter.com/i/web/status/1391370031855022082threatintelctr
2021-05-09 09:40:03[CVE-2021-22204] ExifTool - Arbitrary code execution in the DjVu module when parsing a malicious image: Posted by W… https://t.co/2B78eiGVyf https://twitter.com/i/web/status/1391324824799092741oss_security
2021-05-06 08:00:06🔴DEBIAN🔴 Múltiples vulnerabilidades de severidad alta en productos DEBIAN: CVE-2021-22204,CVE-2020-35524 Más inf… https://t.co/qhzlS06ItV https://twitter.com/i/web/status/1390213498559475714GrupoICA_Ciber
2021-05-04 16:10:10poc for CVE-2021-22204 ! Thx @Agarri_FR and @amalmurali47 for the help :) https://t.co/8crxRBSsOQG4N4P4T1
2021-05-04 08:00:04🔴DEBIAN🔴 Múltiples vulnerabilidades de severidad alta en productos DEBIAN: CVE-2021-21201,CVE-2021-22204,CVE-2021… https://t.co/9Ia1MmxgDk https://twitter.com/i/web/status/1389489660393570311GrupoICA_Ciber
2021-05-03 18:30:13CVE-2021-22204 https://t.co/uYkVp11zQ9 #HarsiaInfo https://har-sia.info/CVE-2021-22204.htmlHar_sia
2021-05-03 16:40:07New post from https://t.co/9KYxtdZjkl (CVE-2021-22204 (debian_linux, exiftool)) has been published on https://t.co/mtjbSIy9kN http://www.sesin.at https://www.sesin.at/2021/05/03/cve-2021-22204-debian_linux-exiftool/www_sesin_at
2021-05-03 16:40:05New post from https://t.co/uXvPWJy6tj (CVE-2021-22204 (debian_linux, exiftool)) has been published on https://t.co/k4yspRCeJN http://www.sesin.at https://www.sesin.at/2021/05/03/cve-2021-22204-debian_linux-exiftool/WolfgangSesin
2021-05-03 14:40:04🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/yDEN9ZkzNj https://twitter.com/i/web/status/1389225925796143105threatintelctr
2021-05-03 13:50:02OSINTerやCTFerにおなじみのexiftoolで、細工したファイルを読み込むことで任意コード実行の脆弱性 CVE-2021-22204 が出ています。 upstreamは修正済みですが、Ubuntu等のパッケージはまだ。パ… https://t.co/5MD8KRb18t https://twitter.com/i/web/status/1389214337911300107ozuma5119
2021-05-03 04:40:07🚨 NEW: CVE-2021-22204 🚨 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and… https://t.co/Ye4dxxDo8U https://twitter.com/i/web/status/1389075543140835328threatintelctr
2021-05-02 00:00:03Finally, my own version of CVE-2021-22204 is working embedded in a valid image =) Thanks, @wcbowling for sharing,… https://t.co/zBHnylkm9b https://twitter.com/i/web/status/1388643897480523779bananabr
2021-05-01 13:30:09it was fun to figure out the ExifTool new CVE-2021-22204 https://t.co/P3IxEndbsGomakmoh
2021-04-30 21:20:11I was able to reproduce the RCE poc on exiftool (CVE-2021-22204) 🤘🥳. kudos to @wcbowling for the awesome finding. https://t.co/GYDBcGmc7oih3bski
2021-04-30 18:50:11Ha! This is fashionable this week) Two different vectors for CVE-2021-22204 and... no idea about embedding into a j… https://t.co/ct37R8uWHH https://twitter.com/i/web/status/13882023251399925814lemon
2021-04-30 08:30:02Tried CVE-2021-22204 with help from my teammates @PTDuy and @CurseRed at @starlabs_sg and had tons of fun trying t… https://t.co/OhqPDKSDFI https://twitter.com/i/web/status/1388047777121198083c3xp1r
2021-04-29 12:20:04Got CVE-2021-22204 working with a payload inside a valid JPG (and PNG and a few others) Think I ended up using a d… https://t.co/LfJBZUZ3UZ https://twitter.com/i/web/status/1387743312082128897dozernz
2021-04-28 17:50:06CVE-2021-22204 is a really cool bug. I had a lot of fun analysing and exploiting it. A really good exercise to flex… https://t.co/lyeERbQbKi https://twitter.com/i/web/status/1387463482296045568amalmurali47
2021-04-28 08:30:05CVE-2021-22204: Improper neutralization of user data in the DjVu file format in ExifTool via /r/netsec… https://t.co/KM07kyFkPy https://twitter.com/i/web/status/1387322363172331523CybrXx0
2021-04-28 08:00:09https://t.co/CRuXILYySt Add patch CVE-2021-22204.patch, taken from upstream release 12.24. (0347501f) · Commits · D… https://t.co/hLl16M3TjW https://salsa.debian.org/perl-team/modules/packages/libimage-exiftool-perl/-/commit/0347501fda93cb8366d6451aedcf258b34fb4a2b https://twitter.com/i/web/status/1387313414830280707netsecu
2021-04-28 08:00:08New post: "CVE-2021-22204: Improper neutralization of user data in the DjVu file format in ExifTool" https://t.co/WYTquShyCz https://ift.tt/3t3vB5fMyinfosecfeed
2021-04-28 07:20:03CVE-2021-22204: Improper neutralization of user data in the DjVu file format in ExifTool https://t.co/lL25BMTiuh https://salsa.debian.org/perl-team/modules/packages/libimage-exiftool-perl/-/commit/0347501fda93cb8366d6451aedcf258b34fb4a2b_r_netsec
2021-04-28 02:30:03⚠️ Update ASAP to v1.0.8 if you don’t want to get pwned via CVE-2021-22204 ⚠️ https://t.co/i9BEaaNTsK https://twitter.com/BApp_Store/status/1387060171608936450MasteringBurp
2021-04-27 18:30:08CVE-2021-22204 https://t.co/uYkVp11zQ9 #HarsiaInfo https://har-sia.info/CVE-2021-22204.htmlHar_sia
2021-04-27 09:10:07CVE-2021-22204 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows… https://t.co/Ol0xLP2z2F https://twitter.com/i/web/status/1386968472861687815FortifiedITLtd
2021-04-26 18:40:11CVE-2021-22204 https://t.co/uYkVp11zQ9 #HarsiaInfo https://har-sia.info/CVE-2021-22204.htmlHar_sia
2021-04-26 08:30:03Just got a RCE from Exiftool with CVE-2021-22204 with my collab @yabeow ⚔️ Kudos to @wcbowling with awesome work du… https://t.co/yP6jjFjP2g https://twitter.com/i/web/status/1386596150791208963ducnt_
2021-04-25 15:40:04Sat down with @iamnoooob and did this Exiftool (CVE-2021-22204) RCE. Nice one @wcbowling! Now let's try to fit… https://t.co/ywjXxx4VHA https://twitter.com/i/web/status/1386343355605417986rootxharsh
2021-04-25 09:10:05I just figured out the ExifTool arbitrary code execution exploit (CVE-2021-22204) by looking at the patch and writi… https://t.co/iP3QkHk3ky https://twitter.com/i/web/status/1386245136464547842hexdefined
2021-04-24 04:00:43Anyone using ExifTool make sure to update to 12.24+ as CVE-2021-22204 can be triggered with a perfectly valid image… https://t.co/xhz5ctQQfP https://twitter.com/i/web/status/1385803927321415687wcbowling
2021-04-23 22:10:04CVE-2021-22204 is called Unsettled Saddleback https://t.co/DtNbAmYDdQ https://nvd.nist.gov/vuln/detail/CVE-2021-22204vulnonym
2021-04-23 21:30:28New post from https://t.co/9KYxtdZjkl (CVE-2021-22204) has been published on https://t.co/uHFEGLLG9S http://www.sesin.at https://www.sesin.at/2021/04/23/cve-2021-22204/www_sesin_at
2021-04-23 21:30:22New post from https://t.co/uXvPWJy6tj (CVE-2021-22204) has been published on https://t.co/n8IVq3BALc http://www.sesin.at https://www.sesin.at/2021/04/23/cve-2021-22204/WolfgangSesin
2021-04-23 21:20:14CVE Liste posted "CVE-2021-22204" See full original article: https://t.co/NU4YEooJKN All our feeds: https://t.co/EOLcNJGCHf https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22204 https://secnews.physaphae.frInfoSecPhysa
2021-04-23 21:10:21CVE-2021-22204 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allow… https://t.co/LDlRI09v8Y https://twitter.com/i/web/status/1385701299300220932VulmonFeeds
2021-04-23 20:30:37Gitlab - CVE-2021-22204: https://t.co/FqgXrAi0wg https://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800LinInfoSec
2021-04-23 18:50:14CVE-2021-22204 Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows… https://t.co/a1SR74YmvX https://twitter.com/i/web/status/1385666114429014017CVEnew