CVE Tools

llamaindex

AI / MLoss-project

13

Cumulative CVEs

2

Monthly snapshots

#115

Peak rank

Top products

Latest CVEs

The 15 most recently published vulnerabilities affecting llamaindex.

CVE-2024-14021LlamaIndex <= 0.11.6 BGEM3Index Unsafe Deserialization7.8Jan 12, 2026
CVE-2024-58339LlamaIndex <= 0.12.2 VannaQueryEngine SQL Execution Allows Resource Exhaustion7.5Jan 12, 2026
CVE-2025-7707World-Writable NLTK Cache Directory Vulnerability in run-llama/llama_index7.8Oct 13, 2025
CVE-2025-6211MD5 Hash Collision in run-llama/llama_index6.5Jul 10, 2025
CVE-2025-6209Arbitrary File Read through Path Traversal in run-llama/llama_index7.5Jul 7, 2025
CVE-2025-5472Denial of Service via Uncontrolled Recursive JSON Parsing in JSONReader in run-llama/llama_index6.5Jul 7, 2025
CVE-2025-6210Hardlink-Based Path Traversal in run-llama/llama_index6.2Jul 7, 2025
CVE-2025-3046Path Traversal via Symbolic Links in run-llama/llama_index7.5Jul 7, 2025
CVE-2025-3044MD5 Hash Collision in run-llama/llama_index5.3Jul 7, 2025
CVE-2025-3225XML Entity Expansion vulnerability in run-llama/llama_index7.5Jul 7, 2025
CVE-2025-3108Unsafe Deserialization in JsonPickleSerializer Enables Remote Code Execution in run-llama/llama_index7.5Jul 6, 2025
CVE-2025-1793SQL Injection in run-llama/llama_index9.8Jun 5, 2025
CVE-2025-1750SQL Injection in run-llama/llama_index9.8Jun 2, 2025
CVE-2025-1753Command Injection in LLama-Index CLI in run-llama/llama_index7.8May 28, 2025
CVE-2025-1752Denial of Service in run-llama/llama_index7.5May 10, 2025