CVE-2024-45872

MEDIUM

Bandisoft BandiView 7.05 - Heap-based Buffer Overflow via PSD File Parsing

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-45872. PoCs published by bshyuunn.

AI-analyzed exploit summary The repository claims to contain PoCs for CVE-2024-45870, CVE-2024-45871, and CVE-2024-45872 but only provides README files with no actual exploit code or technical details. The README lists CVEs and credits but lacks functional PoC code or analysis.

Description

Bandisoft BandiView 7.05 is vulnerable to Buffer Overflow via sub_0x410d1d. The vulnerability occurs due to insufficient validation of PSD files.

Exploits (1)

github STUB 1 stars

by bshyuunn · poc

https://github.com/bshyuunn/bandiview-7.05-vuln-PoC

View Code ZIP pw:eip

The repository claims to contain PoCs for CVE-2024-45870, CVE-2024-45871, and CVE-2024-45872 but only provides README files with no actual exploit code or technical details. The README lists CVEs and credits but lacks functional PoC code or analysis.

Classification

Stub 90%

Attack Type

Other

Complexity

Theoretical

Reliability

Theoretical

Target: BandiView v7.05

No auth needed

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://github.com/Jaecho6053/BandiView_PoC

Scores

CVSS v3 6.3

EPSS 0.0042

EPSS Percentile 33.4%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-122

Status published

Products (1)

bandisoft/bandiview 7.0.5

Published Oct 03, 2024

Tracked Since Feb 18, 2026