CVE-2026-3102 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the com…
Medium CVSS: 5.3

CVE-2026-3102

A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized. Upgrading to version 13.50 is capable of addressing this issue. Patch name: e9609a9bcc0d32bd252a709a562fb822d6dd86f7. Upgrading the affected component is recommended.
Vendor
Exiftool Project
Product
Exiftool
CWE
CWE-77
Yayın Tarihi
2026-02-24 15:21:41
Güncelleme
2026-02-26 20:09:11
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-77 Exiftool MEDIUM Exiftool Project 2026

Referanslar

https://github.com/exiftool/exiftool/ https://github.com/exiftool/exiftool/commit/e9609a9bcc0d32bd252a709a562fb822d6dd86f7 https://github.com/exiftool/exiftool/releases/tag/13.50 https://vuldb.com/?ctiid.347528 https://vuldb.com/?id.347528 https://vuldb.com/?submit.758146 https://www.youtube.com/watch?v=akk0vmilfb4