All 2 CVE vulnerabilities found in llama_index, with AI-generated Chinese analysis, references, and POCs.
Vendor: run-llama
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-14021 | LlamaIndex <= 0.11.6 BGEM3Index Unsafe Deserialization CWE-502 | 7.8AI | HighAI | 2026-01-12 |
| CVE-2024-58339 | LlamaIndex <= 0.12.2 VannaQueryEngine SQL Execution Allows Resource Exhaustion CWE-770 | 7.5AI | HighAI | 2026-01-12 |
All 2 known CVE vulnerabilities affecting llama_index with full Chinese analysis, references, and POCs where available.