Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-20993

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00314EPSS
Exploits1References3
Snyk
Snykadded 2025/07/10 3:31 p.m.3 views

Expected Behavior Violation

Overview llama-index-readers-docugami is a llama-index readers docugami integration Affected versions of this package are vulnerable to Expected Behavior Violation via the DocugamiReader class. An attacker can cause loss of important document content, disrupt parent-child chunk hierarchies, and...

6.9CVSS6.9AI score0.00314EPSS
Exploits1References2
OSV
OSVadded 2025/07/10 3:31 p.m.5 views

GHSA-5HQ9-5R78-2GJH LlamaIndex vulnerable to data loss through hash collisions in its DocugamiReader class

A vulnerability in the DocugamiReader class of the run-llama/llamaindex repository, up to but excluding version 0.12.41, involves the use of MD5 hashing to generate IDs for document chunks. This approach leads to hash collisions when structurally distinct chunks contain identical text, resulting ...

6.5CVSS6.5AI score0.00314EPSS
Exploits1References4
Github Security Blog
Github Security Blogadded 2025/07/10 3:31 p.m.7 views

LlamaIndex vulnerable to data loss through hash collisions in its DocugamiReader class

A vulnerability in the DocugamiReader class of the run-llama/llamaindex repository, up to but excluding version 0.12.41, involves the use of MD5 hashing to generate IDs for document chunks. This approach leads to hash collisions when structurally distinct chunks contain identical text, resulting ...

6.5CVSS7AI score0.00314EPSS
Exploits1References4Affected Software2
NVD
NVDadded 2025/07/10 1:15 p.m.3 views

CVE-2025-6211

A vulnerability in the DocugamiReader class of the run-llama/llamaindex repository, up to version 0.12.28, involves the use of MD5 hashing to generate IDs for document chunks. This approach leads to hash collisions when structurally distinct chunks contain identical text, resulting in one chunk...

6.5CVSS0.00314EPSS
Exploits1References2
OSV
OSVadded 2025/07/10 1:15 p.m.4 views

CVE-2025-6211

A vulnerability in the DocugamiReader class of the run-llama/llamaindex repository, up to version 0.12.28, involves the use of MD5 hashing to generate IDs for document chunks. This approach leads to hash collisions when structurally distinct chunks contain identical text, resulting in one chunk...

6.5CVSS6.2AI score
Exploits0References2
Huntr
Huntradded 2025/04/04 1:4 p.m.7 views

MD5 Hash Collision in DocugamiReader Overwrites Structurally Distinct Chunks with Identical Text

Description The DocugamiReader class in llamaindex retrieves structured XML documents from the Docugami API, parses them into semantic chunks, and converts them into Document objects. To assign consistent IDs to each chunk, the following logic is used: hashedid =...

6.5CVSS7.2AI score0.00314EPSS
Exploits1
Rows per page
Query Builder