CVE-2024-45870

MEDIUM

BandiView 7.05 - Improper Access Control via Crafted POC File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-45870. PoCs published by bshyuunn.

AI-analyzed exploit summary The repository claims to contain PoCs for multiple Bandiview 7.05 vulnerabilities but only includes README files with no actual exploit code or technical details. The README lists CVEs and credits but lacks functional PoC code or analysis.

Description

Bandisoft BandiView 7.05 is vulnerable to Incorrect Access Control in sub_0x3d80fc via a crafted POC file.

Exploits (1)

nomisec STUB 1 stars

by bshyuunn · poc

https://github.com/bshyuunn/bandiview-7.05-vuln-PoC

View Code ZIP pw:eip

The repository claims to contain PoCs for multiple Bandiview 7.05 vulnerabilities but only includes README files with no actual exploit code or technical details. The README lists CVEs and credits but lacks functional PoC code or analysis.

Classification

Stub 90%

Attack Type

Dos

Complexity

Theoretical

Reliability

Theoretical

Target: BandiView v7.05 (BuildNo=26122)

No auth needed

Prerequisites: none specified

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://github.com/Jaecho6053/BandiView_PoC

Scores

CVSS v3 6.5

EPSS 0.0042

EPSS Percentile 33.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-284

Status published

Products (1)

bandisoft/bandiview 7.0.5

Published Oct 03, 2024

Tracked Since Feb 18, 2026