CVE-2024-45871 – BandiView 7.05 contains an incorrect access con... (How to Fix)

Q: What is the severity of CVE-2024-45871?

CVE-2024-45871 has a CVSS score of 6.3 (MEDIUM). BandiView 7.05 contains an incorrect access control vulnerability in the sub_0x232bd8 function that allows attackers to cause denial of service. This affects all users running the vulnerable version of Bandisoft's BandiView image viewer software. Attackers can crash the application by exploiting this flaw.

📋 TL;DR

BandiView 7.05 contains an incorrect access control vulnerability in the sub_0x232bd8 function that allows attackers to cause denial of service. This affects all users running the vulnerable version of Bandisoft's BandiView image viewer software. Attackers can crash the application by exploiting this flaw.

💻 Affected Systems

Products:

Bandisoft BandiView

Versions: 7.05

Operating Systems: Windows

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects BandiView 7.05 on Windows systems. Other versions may also be vulnerable but unconfirmed.

📦 What is this software?

Bandiview by Bandisoft

View all CVEs affecting Bandiview →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete application crash and denial of service, potentially disrupting image viewing workflows and causing data loss if files are being processed.

🟠

Likely Case

Application crash requiring restart, temporary disruption to user's ability to view images with BandiView.

🟢

If Mitigated

Minimal impact if application is not processing critical files or if alternative viewers are available.

🌐 Internet-Facing: LOW - BandiView is a desktop application not typically exposed to internet traffic.

🏢 Internal Only: MEDIUM - Internal users could be targeted with malicious files or network shares containing exploit triggers.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Proof of concept available on GitHub demonstrates the denial of service attack. Exploitation appears straightforward based on the available information.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: Unknown

Restart Required: No

Instructions:

Check Bandisoft website for updated version. If available, download and install the latest version of BandiView.

🔧 Temporary Workarounds

Use alternative image viewer

windows

Temporarily use a different image viewing application until BandiView is patched.

Restrict file access

windows

Limit BandiView's access to untrusted files and network shares.

🧯 If You Can't Patch

Monitor for application crashes and investigate suspicious files that trigger them
Implement application whitelisting to control which applications can run

🔍 How to Verify

Check if Vulnerable:

Check BandiView version in Help > About. If version is 7.05, the system is vulnerable.

Check Version:

Not applicable - check via BandiView GUI Help > About menu

Verify Fix Applied:

Update to a version later than 7.05 and verify the version in Help > About.

📡 Detection & Monitoring

Log Indicators:

Application crash logs for BandiView
Windows Event Logs showing application failures

Network Indicators:

Unusual network shares or file transfers targeting BandiView users

SIEM Query:

EventID=1000 OR EventID=1001 AND ProcessName="BandiView.exe"

📊 Metadata

CVE ID: CVE-2024-45871

CVSS v3 Score: 6.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-20

Published: October 3, 2024

Last Updated: April 28, 2025

🔗 References

https://github.com/Jaecho6053/BandiView_PoC Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-45871, you might also want to check these: