{"url":"http://public2.vulnerablecode.io/api/packages/818092?format=json","purl":"pkg:pypi/llama-index@0.12.16","type":"pypi","namespace":"","name":"llama-index","version":"0.12.16","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"0.13.0","latest_non_vulnerable_version":"0.13.0","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/48016?format=json","vulnerability_id":"VCID-gmvy-ywca-j3ez","summary":"llama-index has Insecure Temporary File\nThe llama_index library version 0.12.33 sets the NLTK data directory to a subdirectory of the codebase by default, which is world-writable in multi-user environments. This configuration allows local users to overwrite, delete, or corrupt NLTK data files, leading to potential denial of service, data tampering, or privilege escalation. The vulnerability arises from the use of a shared cache directory instead of a user-specific one, making it susceptible to local data tampering and denial of service.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-7707.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-7707.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-7707","reference_id":"","reference_type":"","scores":[{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.0825","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08292","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08302","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08283","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08231","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-7707"},{"reference_url":"https://github.com/run-llama/llama_index","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/run-llama/llama_index"},{"reference_url":"https://github.com/run-llama/llama_index/commit/98816394d57c7f53f847ed7b60725e69d0e7aae4","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"},{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-14T14:32:21Z/"}],"url":"https://github.com/run-llama/llama_index/commit/98816394d57c7f53f847ed7b60725e69d0e7aae4"},{"reference_url":"https://huntr.com/bounties/3fe2c8ab-6727-4aef-a0ef-4d2818e48803","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"},{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-14T14:32:21Z/"}],"url":"https://huntr.com/bounties/3fe2c8ab-6727-4aef-a0ef-4d2818e48803"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2403577","reference_id":"2403577","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2403577"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-7707","reference_id":"CVE-2025-7707","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-7707"},{"reference_url":"https://github.com/advisories/GHSA-rg9h-vx28-xxp5","reference_id":"GHSA-rg9h-vx28-xxp5","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-rg9h-vx28-xxp5"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/70834?format=json","purl":"pkg:pypi/llama-index@0.13.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/llama-index@0.13.0"}],"aliases":["CVE-2025-7707","GHSA-rg9h-vx28-xxp5"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gmvy-ywca-j3ez"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/57277?format=json","vulnerability_id":"VCID-srvs-yd2v-1fek","summary":"LlamaIndex Vulnerable to Denial of Service (DoS)\nA Denial of Service (DoS) vulnerability has been identified in the KnowledgeBaseWebReader class of the run-llama/llama_index project, affecting version ~ latest(v0.12.15). The vulnerability arises due to inappropriate secure coding measures, specifically the lack of proper implementation of the max_depth parameter in the get_article_urls function. This allows an attacker to exhaust Python's recursion limit through repeated function calls, leading to resource consumption and ultimately crashing the Python process.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1752.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1752.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1752","reference_id":"","reference_type":"","scores":[{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36884","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36938","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36944","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.3691","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36871","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1752"},{"reference_url":"https://github.com/run-llama/llama_index","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/run-llama/llama_index"},{"reference_url":"https://github.com/run-llama/llama_index/commit/3c65db2947271de3bd1927dc66a044da385de4da","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-12T17:47:19Z/"}],"url":"https://github.com/run-llama/llama_index/commit/3c65db2947271de3bd1927dc66a044da385de4da"},{"reference_url":"https://huntr.com/bounties/cd7b9082-7d75-42e4-84f5-dbee23cbc467","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-12T17:47:19Z/"}],"url":"https://huntr.com/bounties/cd7b9082-7d75-42e4-84f5-dbee23cbc467"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2365431","reference_id":"2365431","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2365431"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-1752","reference_id":"CVE-2025-1752","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-1752"},{"reference_url":"https://github.com/advisories/GHSA-7c85-87cp-mr6g","reference_id":"GHSA-7c85-87cp-mr6g","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7c85-87cp-mr6g"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/85090?format=json","purl":"pkg:pypi/llama-index@0.12.21","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gmvy-ywca-j3ez"},{"vulnerability":"VCID-x63v-5g31-9ubm"},{"vulnerability":"VCID-zrjv-cjr8-byeh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/llama-index@0.12.21"}],"aliases":["CVE-2025-1752","GHSA-7c85-87cp-mr6g"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-srvs-yd2v-1fek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/57399?format=json","vulnerability_id":"VCID-x63v-5g31-9ubm","summary":"llama_index vulnerable to SQL Injection\nMultiple vector store integrations in run-llama/llama_index version v0.12.21 have SQL injection vulnerabilities. These vulnerabilities allow an attacker to read and write data using SQL, potentially leading to unauthorized access to data of other users depending on the usage of the llama-index library in a web application.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1793.json","reference_id":"","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1793.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1793","reference_id":"","reference_type":"","scores":[{"value":"0.00057","scoring_system":"epss","scoring_elements":"0.18036","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00057","scoring_system":"epss","scoring_elements":"0.1813","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00057","scoring_system":"epss","scoring_elements":"0.18131","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00057","scoring_system":"epss","scoring_elements":"0.18094","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00057","scoring_system":"epss","scoring_elements":"0.18018","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1793"},{"reference_url":"https://github.com/run-llama/llama_index","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/run-llama/llama_index"},{"reference_url":"https://github.com/run-llama/llama_index/commit/0008041e8dde8e519621388e5d6f558bde6ef42e","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-06-05T13:28:44Z/"}],"url":"https://github.com/run-llama/llama_index/commit/0008041e8dde8e519621388e5d6f558bde6ef42e"},{"reference_url":"https://huntr.com/bounties/8cb1555a-9655-4122-b0d6-60059e79183c","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-06-05T13:28:44Z/"}],"url":"https://huntr.com/bounties/8cb1555a-9655-4122-b0d6-60059e79183c"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370381","reference_id":"2370381","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2370381"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-1793","reference_id":"CVE-2025-1793","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-1793"},{"reference_url":"https://github.com/advisories/GHSA-v3c8-3pr6-gr7p","reference_id":"GHSA-v3c8-3pr6-gr7p","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-v3c8-3pr6-gr7p"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/46009?format=json","purl":"pkg:pypi/llama-index@0.12.28","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gmvy-ywca-j3ez"},{"vulnerability":"VCID-pwa9-7xgw-vkgu"},{"vulnerability":"VCID-zrjv-cjr8-byeh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/llama-index@0.12.28"}],"aliases":["CVE-2025-1793","GHSA-v3c8-3pr6-gr7p"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x63v-5g31-9ubm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/57633?format=json","vulnerability_id":"VCID-zrjv-cjr8-byeh","summary":"LlamaIndex vulnerable to data loss through hash collisions in its DocugamiReader class\nA vulnerability in the DocugamiReader class of the run-llama/llama_index repository, up to but excluding version 0.12.41, involves the use of MD5 hashing to generate IDs for document chunks. This approach leads to hash collisions when structurally distinct chunks contain identical text, resulting in one chunk overwriting another. This can cause loss of semantically or legally important document content, breakage of parent-child chunk hierarchies, and inaccurate or hallucinated responses in AI outputs. The issue is resolved in version 0.3.1.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6211.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6211.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-6211","reference_id":"","reference_type":"","scores":[{"value":"0.00301","scoring_system":"epss","scoring_elements":"0.53752","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00301","scoring_system":"epss","scoring_elements":"0.53725","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00301","scoring_system":"epss","scoring_elements":"0.53748","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00301","scoring_system":"epss","scoring_elements":"0.53761","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-6211"},{"reference_url":"https://github.com/run-llama/llama_index","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/run-llama/llama_index"},{"reference_url":"https://github.com/run-llama/llama_index/commit/29b2e07e64ed7d302b1cc058185560b28eaa1352","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L"},{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-10T15:13:09Z/"}],"url":"https://github.com/run-llama/llama_index/commit/29b2e07e64ed7d302b1cc058185560b28eaa1352"},{"reference_url":"https://huntr.com/bounties/1a48a011-a3c5-4979-9ffc-9652280bc389","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L"},{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-10T15:13:09Z/"}],"url":"https://huntr.com/bounties/1a48a011-a3c5-4979-9ffc-9652280bc389"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379311","reference_id":"2379311","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379311"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-6211","reference_id":"CVE-2025-6211","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-6211"},{"reference_url":"https://github.com/advisories/GHSA-5hq9-5r78-2gjh","reference_id":"GHSA-5hq9-5r78-2gjh","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5hq9-5r78-2gjh"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/46022?format=json","purl":"pkg:pypi/llama-index@0.12.41","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gmvy-ywca-j3ez"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/llama-index@0.12.41"}],"aliases":["CVE-2025-6211","GHSA-5hq9-5r78-2gjh"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zrjv-cjr8-byeh"}],"fixing_vulnerabilities":[],"risk_score":"4.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/llama-index@0.12.16"}