CVE-2024-45872 identifies a buffer overflow vulnerability in Bandisoft BandiView version 7.05, specifically within the sub_0x410d1d function responsible for processing PSD (Photoshop Document) files. The root cause is insufficient validation of PSD file contents, which allows crafted files to overflow internal buffers. This vulnerability is classified under CWE-122 (Heap-based Buffer Overflow), indicating that the overflow occurs in heap memory, which can lead to unpredictable behavior including application crashes or potentially arbitrary code execution. The CVSS 3.1 base score is 6.3, reflecting a medium severity level. The attack vector is adjacent network (AV:A), meaning exploitation requires the attacker to be on the same local network or have some network proximity. The attack complexity is low (AC:L), no privileges are required (PR:N), and no user interaction is needed (UI:N). The scope is unchanged (S:U), and the impacts on confidentiality, integrity, and availability are all low (C:L/I:L/A:L). There are no known exploits in the wild yet, and no patches have been published at the time of disclosure. The vulnerability could be exploited by an attacker supplying a malicious PSD file to the application, causing it to process the file and trigger the overflow. This could result in denial of service via application crash or potentially allow further exploitation depending on the environment and memory protections in place. Organizations using BandiView for PSD file viewing or processing should be aware of this risk, especially if they handle PSD files from untrusted sources.

The primary impact of CVE-2024-45872 is the potential for denial of service through application crashes when processing malicious PSD files, which can disrupt workflows and productivity. There is also a limited risk of confidentiality and integrity compromise if the buffer overflow can be leveraged to execute arbitrary code, though this is not confirmed and likely requires specific conditions. Since the attack vector is adjacent network, attackers need network proximity, limiting remote exploitation scope. However, in environments where PSD files are shared or transferred frequently, the risk of exposure increases. Organizations relying on Bandisoft BandiView in creative industries, digital media, or design firms could face operational disruptions. Additionally, if exploited in targeted attacks, this vulnerability could serve as an entry point for further compromise. The lack of available patches means the vulnerability remains open until addressed, increasing the window of risk. Overall, the impact is medium severity, with potential for localized denial of service and limited data integrity or confidentiality issues.

To mitigate CVE-2024-45872, organizations should implement the following specific measures: 1) Restrict and control the sources of PSD files opened with BandiView, avoiding files from untrusted or unknown origins. 2) Employ network segmentation and access controls to limit exposure to adjacent network attackers who might deliver malicious PSD files. 3) Use application whitelisting and sandboxing techniques to isolate BandiView processes, reducing the impact of potential crashes or exploitation. 4) Monitor application logs and system behavior for signs of crashes or anomalous activity related to PSD file processing. 5) Educate users about the risks of opening PSD files from unverified sources and encourage verification before opening. 6) Maintain up-to-date backups of critical data to recover quickly from denial of service incidents. 7) Stay alert for official patches or updates from Bandisoft and apply them promptly once available. 8) Consider alternative PSD file viewers or processors with a stronger security track record until this vulnerability is resolved. These targeted steps go beyond generic advice by focusing on controlling PSD file provenance, network exposure, and process isolation.