Published: 25/01/2022 Updated: 08/08/2023

CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 677

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

lib/Image/ExifTool.pm in ExifTool prior to 12.38 mishandles a $file =~ /\|$/ check, leading to command injection.

Vulnerable Product	Search on Vulmon	Subscribe to Product
exiftool project exiftool

lib/Image/ExifToolpm in ExifTool before 1238 mishandles a $file =~ /\|$/ check (CVE-2022-23935) ...

🐍 Python Exploit for CVE-2022-23935

CVE-2022-23935 🐍 Python Exploit for CVE-2022-23935 Staged Reverse Shell Payload Generator for CVE-2022-23935 Example cve-2022-23935 1010163 44444 Usage usage: cve-2022-23935 [-h] [-l SERVER_PORT] [-s SHELL] ip port positional arguments: ip IP Address/Host for Callback port Port Number for Cal

CVE-2022-23935 exploit PoC exiftool version 12.37 written in python

Introduction CVE-2022-23935 exploit PoC exiftool version 1237 Installation git clone githubcom/0xFTW/CVE-2022-23935 cd CVE-2022-23935 chmod +x CVE-2022-23935py pip3 install pwntools Usage /CVE-2022-23935 <IP> <PORT>

CWE-78 https://github.com/exiftool/exiftool/commit/74dbab1d2766d6422bb05b033ac6634bf8d1f582 https://gist.github.com/ert-plus/1414276e4cb5d56dd431c2f0429e4429 https://nvd.nist.gov https://github.com/BKreisel/CVE-2022-23935 https://alas.aws.amazon.com/ALAS-2022-1566.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-23935

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect