Vulnerability in Appsmithorg Appsmith

CVE-2024-55604

Appsmith is a platform to build admin panels, internal tools, and dashboards. Users invited as "App Viewer" should not have access to development information of a workspace. Datasources are such a component in a workspace. Yet, in versions…

EPSS: 0.002 (35.4th percentile) — read the EPSS interpretation.

Affected products

Appsmithorg Appsmith — versions < 1.51

Weakness classification (CWE)

CWE-280 — Improper Handling of Insufficient Permissions or Privileges

References

https://github.com/appsmithorg/appsmith/security/advisories/GHSA-794x-gm8v-2wj6 (x_refsource_CONFIRM)