Home/Product/llamaindex
Product

llamaindex

25 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-58339
<= 0.12.2
LlamaIndex (run-llama/llama_index) versions up to and including 0.12.2 contain an uncontrolled resource consumption vulnerability
7.5HIGH
 CVE-2024-14021
<= 0.11.6
LlamaIndex (run-llama/llama_index) versions up to and including 0.11.6 contain an unsafe deserialization vulnerability in BGEM3Ind
7.8HIGH
 CVE-2025-7707
>= 0.12.33 and < 0.13.0
The llama_index library version 0.12.33 sets the NLTK data directory to a subdirectory of the codebase by default, which is world-
7.8HIGH
 CVE-2025-6211
< 0.3.1
A vulnerability in the DocugamiReader class of the run-llama/llama_index repository, up to version 0.12.28, involves the use of MD
6.5MEDIUM
 CVE-2025-6209
>= 0.12.27 and < 0.12.41
A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0.12.40, specifically within the `encode_i
7.5HIGH
 CVE-2025-6210
< 0.5.2
A vulnerability in the ObsidianReader class of the run-llama/llama_index repository, specifically in version 0.12.27, allows for h
6.2MEDIUM
 CVE-2025-5472
>= 0.12.28 and < 0.12.38
The JSONReader in run-llama/llama_index versions 0.12.28 is vulnerable to a stack overflow due to uncontrolled recursive JSON pars
6.5MEDIUM
 CVE-2025-3225
>= 0.12.21 and < 0.12.29
An XML Entity Expansion vulnerability, also known as a 'billion laughs' attack, exists in the sitemap parser of the run-llama/llam
7.5HIGH
 CVE-2025-3046
>= 0.12.23 and < 0.12.28
A vulnerability in the ObsidianReader class of the run-llama/llama_index repository, versions 0.12.23 to 0.12.28, allows for arb
7.5HIGH
 CVE-2025-3044
< 0.12.28
A vulnerability in the ArxivReader class of the run-llama/llama_index repository, versions up to v0.12.22.post1, allows for MD5 ha
5.3MEDIUM
 CVE-2025-3108
>= 0.12.27 and < 0.12.41
A critical deserialization vulnerability exists in the run-llama/llama_index library's JsonPickleSerializer component, affecting v
7.5HIGH
 CVE-2025-1793
>= 0.12.21 and < 0.12.28
Multiple vector store integrations in run-llama/llama_index version v0.12.21 have SQL injection vulnerabilities. These vulnerabili
9.8CRITICAL
 CVE-2025-1750
>= 0.12.19 and < 0.12.21
An SQL injection vulnerability exists in the delete function of DuckDBVectorStore in run-llama/llama_index version v0.12.19. This
9.8CRITICAL
 CVE-2025-1753
all versions
LLama-Index CLI version v0.12.20 contains an OS command injection vulnerability. The vulnerability arises from the improper handli
7.8HIGH
 CVE-2025-1752
< 0.3.6
A Denial of Service (DoS) vulnerability has been identified in the KnowledgeBaseWebReader class of the run-llama/llama_index proje
7.5HIGH
 CVE-2024-12911
< 0.5.1
A vulnerability in the default_jsonalyzer function of the JSONalyzeQueryEngine in the run-llama/llama_index repository allows
7.1HIGH
 CVE-2024-12910
< 0.12.9
A vulnerability in the KnowledgeBaseWebReader class of the run-llama/llama_index repository, version latest, allows an attacker
5.9MEDIUM
 CVE-2024-12909
< 0.3.0
A vulnerability in the FinanceChatLlamaPack of the run-llama/llama_index repository, versions up to v0.12.3, allows for SQL inject
9.8CRITICAL
 CVE-2024-12704
all versions
A vulnerability in the LangChainLLM class of the run-llama/llama_index repository, version v0.12.5, allows for a Denial of Service
7.5HIGH
 CVE-2024-11958
< 0.4.0
A SQL injection vulnerability exists in the duckdb_retriever component of the run-llama/llama_index repository, specifically in
9.8CRITICAL
 CVE-2024-45201
< 0.10.38
An issue was discovered in llama_index before 0.10.38. download/integration.py includes an exec call for import {cls_name}.
8.8HIGH
 CVE-2024-4181
>= 0.9.47 and < 0.10.13
A command injection vulnerability exists in the RunGptLLM class of the llama_index library, version 0.9.47, used by the RunGpt fra
8.8HIGH
 CVE-2024-3271
>= 0.10.6 and < 0.10.26
A command injection vulnerability exists in the run-llama/llama_index repository, specifically within the safe_eval function. Atta
9.8CRITICAL
 CVE-2024-23751
<= 0.9.34
LlamaIndex (aka llama_index) through 0.9.34 allows SQL injection via the Text-to-SQL feature in NLSQLTableQueryEngine, SQLTableRet
9.8CRITICAL
 CVE-2023-39662
<= 0.7.13
An issue in llama_index v.0.7.13 and before allows a remote attacker to execute arbitrary code via the exec parameter in PandasQ
9.8CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin