Lucene search
K

154 matches found

RedhatCVE
RedhatCVE
added 2025/03/28 1:21 a.m.26 views

CVE-2024-55964

An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that...

9.8CVSS7.3AI score0.06268EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/03/28 1:20 a.m.25 views

CVE-2024-55965

An issue was discovered in Appsmith before 1.51. Users invited as "App Viewer" incorrectly have access to development information of a workspace specifically, a list of datasources in a workspace they're a member of. This information disclosure does not expose sensitive data in the datasources,...

6.5CVSS6.4AI score0.00426EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/28 1:20 a.m.18 views

CVE-2024-55963

An issue was discovered in Appsmith before 1.51. A user on Appsmith that doesn't have admin permissions can trigger the restart API on Appsmith, causing a server restart. This is still within the Appsmith container, and the impact is limited to Appsmith's own server only, but there is a denial of...

6.5CVSS6.8AI score0.27733EPSS
Exploits5References1
RedhatCVE
RedhatCVE
added 2025/03/27 2:33 p.m.12 views

CVE-2024-55604

Appsmith is a platform to build admin panels, internal tools, and dashboards. Users invited as "App Viewer" should not have access to development information of a workspace. Datasources are such a component in a workspace. Yet, in versions of Appsmith prior to 1.51, app viewers are able to get a...

4.8CVSS6.3AI score0.00233EPSS
Exploits0References1
NVD
NVD
added 2025/03/26 9:15 p.m.15 views

CVE-2024-55965

An issue was discovered in Appsmith before 1.51. Users invited as "App Viewer" incorrectly have access to development information of a workspace specifically, a list of datasources in a workspace they're a member of. This information disclosure does not expose sensitive data in the datasources,...

6.5CVSS0.00426EPSS
Exploits0References1
Circl
Circl
added 2025/03/26 8:25 p.m.4 views

CVE-2024-55964

creationtimestamp| type| source ---|---|--- 2025-03-26 20:25:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8967 2025-03-26 22:15:26+00:00| seen| https://t.me/cvedetector/21220 2025-04-07 14:00:17+00:00| seen|...

9.8CVSS8.7AI score0.06268EPSS
Exploits2References3
NVD
NVD
added 2025/03/26 8:15 p.m.23 views

CVE-2024-55963

An issue was discovered in Appsmith before 1.51. A user on Appsmith that doesn't have admin permissions can trigger the restart API on Appsmith, causing a server restart. This is still within the Appsmith container, and the impact is limited to Appsmith's own server only, but there is a denial of...

6.5CVSS0.27733EPSS
Exploits5References1
NVD
NVD
added 2025/03/26 8:15 p.m.16 views

CVE-2024-55964

An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that...

9.8CVSS0.06268EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/03/26 12:0 a.m.19 views

CVE-2024-55963

An issue was discovered in Appsmith before 1.51. A user on Appsmith that doesn't have admin permissions can trigger the restart API on Appsmith, causing a server restart. This is still within the Appsmith container, and the impact is limited to Appsmith's own server only, but there is a denial of...

0.27733EPSS
Exploits5References1
OSV
OSV
added 2025/03/26 12:0 a.m.11 views

CVE-2024-55963

An issue was discovered in Appsmith before 1.51. A user on Appsmith that doesn't have admin permissions can trigger the restart API on Appsmith, causing a server restart. This is still within the Appsmith container, and the impact is limited to Appsmith's own server only, but there is a denial of...

6.5CVSS7AI score0.27733EPSS
Exploits5References3
OSV
OSV
added 2025/03/26 12:0 a.m.11 views

CVE-2024-55965

An issue was discovered in Appsmith before 1.51. Users invited as "App Viewer" incorrectly have access to development information of a workspace specifically, a list of datasources in a workspace they're a member of. This information disclosure does not expose sensitive data in the datasources,...

6.5CVSS6.6AI score0.00426EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/03/26 12:0 a.m.16 views

CVE-2024-55964

An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that...

0.06268EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/03/26 12:0 a.m.15 views

CVE-2024-55965

An issue was discovered in Appsmith before 1.51. Users invited as "App Viewer" incorrectly have access to development information of a workspace specifically, a list of datasources in a workspace they're a member of. This information disclosure does not expose sensitive data in the datasources,...

0.00426EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/26 12:0 a.m.4 views

Appsmith 安全漏洞

Appsmith is an open source platform for building, deploying, and maintaining internal applications from Appsmith Open Source. A security vulnerability exists in Appsmith versions prior to 1.51 that stems from incorrect access control checking and could lead to a denial of service...

6.5CVSS6.2AI score0.27733EPSS
Exploits5References2
CNNVD
CNNVD
added 2025/03/26 12:0 a.m.5 views

Appsmith 安全漏洞

Appsmith is an open source platform for building, deploying, and maintaining internal applications from Appsmith Open Source. A security vulnerability exists in Appsmith versions prior to 1.52 that stems from a PostgreSQL misconfiguration that could lead to remote command execution...

9.8CVSS9AI score0.06268EPSS
Exploits2References1
CNNVD
CNNVD
added 2025/03/26 12:0 a.m.4 views

Appsmith 安全漏洞

Appsmith is an open source platform for building, deploying, and maintaining internal applications from Appsmith Open Source. A security vulnerability exists in Appsmith versions prior to 1.51 that stems from improper access control and could lead to information disclosure...

6.5CVSS6.1AI score0.00426EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/03/26 12:0 a.m.7 views

PT-2025-12998

Name of the Vulnerable Software and Affected Versions Appsmith versions prior to 1.52 Description An issue was discovered in Appsmith where an incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must...

9.8CVSS7.4AI score0.06268EPSS
Exploits2References11
Positive Technologies
Positive Technologies
added 2025/03/26 12:0 a.m.6 views

PT-2025-13006 · Appsmith · Appsmith

Name of the Vulnerable Software and Affected Versions: Appsmith versions prior to 1.51 Description: An issue was discovered where users invited as "App Viewer" incorrectly have access to development information of a workspace, specifically a list of datasources in a workspace they're a member of...

6.5CVSS6AI score0.00426EPSS
Exploits0References9
OSV
OSV
added 2025/03/26 12:0 a.m.9 views

CVE-2024-55964

An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that...

9.8CVSS7.5AI score0.06268EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2025/03/26 12:0 a.m.11 views

CVE-2024-55964

An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that...

7.3AI score0.06268EPSS
Exploits2References1
Rows per page
Query Builder