2 matches found
CVE-2024-12910
CVE-2024-12910 affects the run-llama/llama_index project, specifically the KnowledgeBaseWebReader class. The vulnerability leverages a manipulated URL variable containing the root URL to trigger infinite recursive calls to get_article_urls, causing uncontrolled resource consumption and potential ...
LlamaIndex 安全漏洞
LlamaIndex is a data framework for LLM applications open-sourced by LlamaIndex. A security vulnerability exists in LlamaIndex that originates from an unauthenticated URL and could lead to infinite recursive calls and denial of service attacks...