Lucene search
K

5 matches found

CVE
CVE
added 2025/06/05 4:54 a.m.183 views

CVE-2025-1793

CVE-2025-1793 involves multiple vector store integrations in run-llama/llama_index v0.12.21 with SQL injection (CWE-89). The vulnerability allows reading/writing data via SQL, potentially exposing data of other users depending on llama_index usage. Public documents provide concrete details across...

9.8CVSS9.8AI score0.00581EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 12:8 a.m.8 views

CVE-2024-4181

A command injection vulnerability exists in the RunGptLLM class of the llamaindex library, version 0.9.47, used by the RunGpt framework from JinaAI to connect to Language Learning Models LLMs. The vulnerability arises from the improper use of the eval function, allowing a malicious or compromised...

8.8CVSS8AI score0.02118EPSS
Exploits1
NVD
NVD
added 2024/05/16 9:15 a.m.49 views

CVE-2024-4181

A command injection vulnerability exists in the RunGptLLM class of the llamaindex library, version 0.9.47, used by the RunGpt framework from JinaAI to connect to Language Learning Models LLMs. The vulnerability arises from the improper use of the eval function, allowing a malicious or compromised...

8.8CVSS9.1AI score0.02118EPSS
Exploits1References2
CVE
CVE
added 2024/05/16 9:3 a.m.79 views

CVE-2024-4181

The CVE-2024-4181 issue affects llama_index (RunGptLLM class) version 0.9.47 used by RunGpt framework to connect to LLMs. Root cause: unsafe use of eval enabling a malicious or compromised LLM hosting provider to run arbitrary commands on a client machine. Impact statements in sources indicate th...

8.8CVSS7.9AI score0.02118EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2024/05/16 9:3 a.m.7 views

CVE-2024-4181 Command Injection in run-llama/llama_index

A command injection vulnerability exists in the RunGptLLM class of the llamaindex library, version 0.9.47, used by the RunGpt framework from JinaAI to connect to Language Learning Models LLMs. The vulnerability arises from the improper use of the eval function, allowing a malicious or compromised...

8.8CVSS7.4AI score0.02118EPSS
Exploits1References4
Rows per page
Query Builder