CVE-2024-45872

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-45872
Bandisoft BandiView 7.05 is vulnerable to Buffer Overflow via sub_0x410d1d. The vulnerability occurs due to insufficient validation of PSD files.

6.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.4

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References
Link Resource
https://github.com/Jaecho6053/BandiView_PoC
Configurations

No configuration.

History

04 Oct 2024, 13:50

Type Values Removed Values Added
Summary
  • (es) Bandisoft BandiView 7.05 es vulnerable a un desbordamiento de búfer a través de sub_0x410d1d. La vulnerabilidad se produce debido a una validación insuficiente de los archivos PSD.

03 Oct 2024, 20:35

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 6.3
CWE CWE-122

03 Oct 2024, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-10-03 17:15

Updated : 2024-10-04 13:50

NVD link : CVE-2024-45872

Mitre link : CVE-2024-45872

CVE.ORG link : CVE-2024-45872

JSON object : View

Products Affected

No product.

CWE
CWE-122

Heap-based Buffer Overflow


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024