CVE-2024-45870

Published Oct 3, 2024

Last updated 5 months ago

CVSS medium 6.5

Overview

Description
Bandisoft BandiView 7.05 is vulnerable to Incorrect Access Control in sub_0x3d80fc via a crafted POC file.
Source
cve@mitre.org
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.5
Impact score
3.6
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Severity
MEDIUM

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-284

Social media

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score

1

  1. #exploit 1. CVE-2024-45870, CVE-2024-45871, CVE-2024-45872: Bandiview DoS/Stack BoF https://t.co/nNDNRpgFGQ 2. SSRF on Sliver C2 teamserver https://t.co/KZ7IeUvSiy 3. CVE-2025-26794: SQLite (DBM) injection in Exim 4.98 https://t.co/j8nnsYL22w

    @ksg93rd

    24 Feb 2025

    211 Impressions

    0 Retweets

    3 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References