cbcvebase.
CVE-2024-45257
published 2026-05-08

CVE-2024-45257: A Command Injection issue in the payload build page in BYOB (Build Your Own Botnet) 2.0 allows attackers to execute arbitrary commands on the server via a…

PriorityP265high7.3CVSS 3.1
AVNACLPRNUINSUCLILAL
EXPLOIT
EPSS
3.89%
88.9th percentile
A Command Injection issue in the payload build page in BYOB (Build Your Own Botnet) 2.0 allows attackers to execute arbitrary commands on the server via a crafted build parameter. This occurs in freeze in core/generators.py.

Detection & IOCsextracted from sources · hover to see the quote

pathcore/generators.py
  • Monitor for command injection attempts in the payload build page of BYOB 2.0, specifically crafted 'build' parameters passed to the freeze function in core/generators.py.
  • CVE-2024-45257 is chained with CVE-2024-45256 (unauthenticated arbitrary file write to SQLite DB to add admin user) before the authenticated command injection is triggered — detect both stages: DB file write followed by payload generation requests.
  • A public Metasploit module exists for this CVE (byob_unauth_rce), meaning exploitation is trivial and automated — prioritize detection of the full exploit chain against BYOB web GUI instances.
  • ·These vulnerabilities remain unpatched in BYOB 2.0 — no vendor fix is available; the only mitigation is to restrict or remove access to the BYOB web GUI.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.