We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-55964



Description

An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that datasource, and execute that query.

Reserved 2024-12-13 | Published 2025-03-26 | Updated 2025-03-27 | Assigner mitre

References

github.com/...psmith/security/advisories/GHSA-m95x-4w54-gc83

cve.org (CVE-2024-55964)

nvd.nist.gov (CVE-2024-55964)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2024-55964

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.