We tried fuzzing against Bandiview-7.05 and were able to find a few vulnerabilities.
- CVE-2024-45870 ( JXR File Parsing DoS Vulnerability )
- CVE-2024-45871 ( PSD File Parsing DoS Vulnerability )
- CVE-2024-45872 ( PSD File Parsing Stack Buffer Overflow )
- Software: BandiView
- Version: v7.05 (2024/7/15, BuildNo=26122)
- JaeHo Cho ( @Jaecho6053 )
- SongHyun Bae ( @bshyuunn )
- JunSeo Bae ( @V0xe1 )
- LeeDong Ha ( @GAP-dev )