Unrated severityNVD Advisory· Published Mar 26, 2025· Updated Mar 27, 2025

CVE-2024-55965

Description

An issue was discovered in Appsmith before 1.51. Users invited as "App Viewer" incorrectly have access to development information of a workspace (specifically, a list of datasources in a workspace they're a member of). This information disclosure does not expose sensitive data in the datasources, such as database passwords and API Keys.

Affected products

Appsmith/Appsmithdescription
Appsmithorg/Appsmithllm-fuzzy
Range: <1.51
osv-coords
pkg:bitnami/appsmith
Range: < 1.51.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/appsmithorg/appsmith/security/advisories/GHSA-794x-gm8v-2wj6mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000