{"vulnerability": "CVE-2024-55964", "sightings": [{"uuid": "94164c2d-2f13-481d-8236-bb91daae4e52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55964", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:04.000000Z"}, {"uuid": "26a34b50-769a-4f52-9feb-45455c04208f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55964", "type": "seen", "source": "https://t.me/cvedetector/21220", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55964 - Appsmith PostgreSQL Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-55964 \nPublished : March 26, 2025, 8:15 p.m. | 31\u00a0minutes ago \nDescription : An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that datasource, and execute that query. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-26T22:15:26.000000Z"}, {"uuid": "c70670c5-4bf9-471a-bb8a-4bfa9a2f8038", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55964", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8967", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-55964\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that datasource, and execute that query.\n\ud83d\udccf Published: 2025-03-26T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-26T20:07:25.669Z\n\ud83d\udd17 References:\n1. https://github.com/appsmithorg/appsmith/security/advisories/GHSA-m95x-4w54-gc83", "creation_timestamp": "2025-03-26T20:25:59.000000Z"}, {"uuid": "48cda5af-a46a-4efa-bf35-aa565d05fd2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-55964", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/appsmith_rce_cve_2024_55964.rb", "content": "", "creation_timestamp": "2025-04-07T14:00:17.000000Z"}]}