CVE-2025-6209

Exploit

EPSS 0.55%
Veröffentlicht 07.07.2025 12:21:10
Zuletzt bearbeitet 30.07.2025 20:01:32
Quelle security@huntr.dev
CVE-Watchlists
Login
Unerledigt
Login

Arbitrary File Read through Path Traversal in run-llama/llama_index

A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0.12.40, specifically within the `encode_image` function in `generic_utils.py`. This vulnerability allows an attacker to manipulate the `image_path` input to read arbitrary files on the server, including sensitive system files. The issue arises due to improper validation or sanitization of the file path, enabling path traversal sequences to access files outside the intended directory. The vulnerability is fixed in version 0.12.41.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Llamaindex ≫ Llamaindex Version >= 0.12.27 < 0.12.41

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.55%	0.413

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@huntr.dev	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-29 Path Traversal: '\..\filename'

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '\..\filename' (leading backslash dot dot) sequences that can resolve to a location that is outside of that directory.

https://huntr.com/bounties/e89d14f8-bfe8-4c9a-bb2a-656c01cc9a68

Third Party Advisory

Exploit

https://github.com/run-llama/llama_index/commit/cdeaab91a204d1c3527f177dac37390327aef274

Patch

https://nvd.nist.gov/vuln/detail/CVE-2025-6209

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-6209

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-6209

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-6209