NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-45256

Summary	An arbitrary file write issue in the exfiltration endpoint in BYOB (Build Your Own Botnet) 2.0 allows attackers to overwrite SQLite databases and bypass authentication via an unauthenticated HTTP request with a crafted parameter. This occurs in file_add in api/files/routes.py.
Publication Date	Aug. 26, 2024, 4:15 p.m.
Registration Date	Aug. 26, 2024, 8 p.m.
Last Update	Aug. 26, 2024, 4:15 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/malwaredllc/byob
2	https://blog.chebuya.com/posts/unauthenticated-remote-command-execution-on-byob/
3	https://github.com/chebuya/exploits/tree/main/BYOB-RCE

Common Vulnerabilities List