Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

run-llama/llama_index — Vulnerabilities & Security Advisories 24

All 24 CVE vulnerabilities found in run-llama/llama_index, with AI-generated Chinese analysis, references, and POCs.

Vendor: run-llama

CVE IDTitleCVSSSeverityPublished
CVE-2025-6208 Uncontrolled Memory Consumption in run-llama/llama_index CWE-400 7.5 -2026-02-02
CVE-2025-7707 World-Writable NLTK Cache Directory Vulnerability in run-llama/llama_index CWE-377 7.8 -2025-10-13
CVE-2025-7647 Insecure Temporary File Handling in run-llama/llama_index CWE-378 8.8 -2025-09-27
CVE-2025-5302 Denial of Service (DOS) in JSONReader in run-llama/llama_index CWE-674 7.5 -2025-08-25
CVE-2025-6211 MD5 Hash Collision in run-llama/llama_index CWE-440 8.2 -2025-07-10
CVE-2025-6209 Arbitrary File Read through Path Traversal in run-llama/llama_index CWE-29 7.5 -2025-07-07
CVE-2025-5472 Denial of Service via Uncontrolled Recursive JSON Parsing in JSONReader in run-llama/llama_index CWE-674 7.5 -2025-07-07
CVE-2025-6210 Hardlink-Based Path Traversal in run-llama/llama_index CWE-22 7.5 -2025-07-07
CVE-2025-3046 Path Traversal via Symbolic Links in run-llama/llama_index CWE-22 5.3 -2025-07-07
CVE-2025-3044 MD5 Hash Collision in run-llama/llama_index CWE-440 6.5 -2025-07-07
CVE-2025-3225 XML Entity Expansion vulnerability in run-llama/llama_index CWE-776 7.5 -2025-07-07
CVE-2025-3108 Unsafe Deserialization in JsonPickleSerializer Enables Remote Code Execution in run-llama/llama_index CWE-1112 9.8 -2025-07-06
CVE-2025-1793 SQL Injection in run-llama/llama_index CWE-89 7.5AIHighAI2025-06-05
CVE-2025-1750 SQL Injection in run-llama/llama_index CWE-89 9.8AICriticalAI2025-06-02
CVE-2025-1753 Command Injection in LLama-Index CLI in run-llama/llama_index CWE-78 8.8AIHighAI2025-05-28
CVE-2025-1752 Denial of Service in run-llama/llama_index CWE-674 7.5AIHighAI2025-05-10
CVE-2024-11958 SQL Injection in run-llama/llama_index CWE-89 9.8 -2025-03-20
CVE-2024-12911 SQL Injection in run-llama/llama_index CWE-89 9.1 -2025-03-20
CVE-2024-12909 SQL Injection to RCE in run-llama/llama_index CWE-89 9.8 -2025-03-20
CVE-2024-12910 Denial of Service in run-llama/llama_index CWE-674 7.5 -2025-03-20
CVE-2024-12704 Denial of Service (DoS) in run-llama/llama_index CWE-835 7.5 -2025-03-20
CVE-2024-4181 Command Injection in run-llama/llama_index CWE-94 9.8AICriticalAI2024-05-16
CVE-2024-3271 Command Injection in run-llama/llama_index CWE-77 9.8 -2024-04-16
CVE-2024-3098 Prompt Injection leading to Arbitrary Code Execution in run-llama/llama_index CWE-94 9.8AICriticalAI2024-04-10

All 24 known CVE vulnerabilities affecting run-llama/llama_index with full Chinese analysis, references, and POCs where available.