cvedb.io
CVE-2024-55965
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2025-03-26T21:15:23.063 · Last modified 2026-06-17T08:11:30.620

Summary

An issue was discovered in Appsmith before 1.51. Users invited as "App Viewer" incorrectly have access to development information of a workspace (specifically, a list of datasources in a workspace they're a member of). This information disclosure does not expose sensitive data in the datasources, such as database passwords and API Keys.

Affected products

appsmith — appsmith

Does this affect you?

Add your gear to cvedb and we'll alert you only when appsmith ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.