CVE-2026-3102
- EPSS 0.2%
- Veröffentlicht 24.02.2026 14:32:13
- Zuletzt bearbeitet 26.02.2026 20:09:11
A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os comma...
CVE-2022-23935
- EPSS 27.7%
- Veröffentlicht 25.01.2022 06:15:06
- Zuletzt bearbeitet 21.11.2024 06:49:29
lib/Image/ExifTool.pm in ExifTool before 12.38 mishandles a $file =~ /\|$/ check, leading to command injection.
CVE-2021-22204
- EPSS 92.86%
- Veröffentlicht 23.04.2021 18:15:08
- Zuletzt bearbeitet 03.11.2025 18:58:34
Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
CVE-2018-20211
- EPSS 0.2%
- Veröffentlicht 02.01.2019 18:29:01
- Zuletzt bearbeitet 21.11.2024 04:01:05
ExifTool 8.32 allows local users to gain privileges by creating a %TEMP%\par-%username%\cache-exiftool-8.32 folder with a victim's username, and then copying a Trojan horse ws32_32.dll file into this new folder, aka DLL Hijacking. NOTE: 8.32 is an o...