CVE-2024-45256

CRITICAL

BYOB Unauthenticated RCE via Arbitrary File Write and Command Injection (CVE-2024-45256, CVE-2024-45257)

Title source: metasploit
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-45256. PoCs published by chebuya, Valentin Lobstein, including Metasploit module exploits/unix/webapp/byob_unauth_rce.

AI-analyzed exploit summary This Metasploit module exploits CVE-2024-45256 and CVE-2024-45257 in BYOB (Build Your Own Botnet) by chaining an unauthenticated arbitrary file write to modify the SQLite database and an authenticated command injection for RCE.

Description

An arbitrary file write issue in the exfiltration endpoint in BYOB (Build Your Own Botnet) 2.0 allows attackers to overwrite SQLite databases and bypass authentication via an unauthenticated HTTP request with a crafted parameter. This occurs in file_add in api/files/routes.py.

Exploits (1)

metasploit WORKING POC EXCELLENT
by chebuya, Valentin Lobstein · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/byob_unauth_rce.rb

This Metasploit module exploits CVE-2024-45256 and CVE-2024-45257 in BYOB (Build Your Own Botnet) by chaining an unauthenticated arbitrary file write to modify the SQLite database and an authenticated command injection for RCE.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: BYOB (Build Your Own Botnet) web GUI
No auth needed
Prerequisites: Network access to the BYOB web interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 9.8
EPSS 0.0563
EPSS Percentile 91.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-22
Status published
Published Aug 26, 2024
Tracked Since Feb 18, 2026