Primary

Context

DuckDB SQL Injection Vulnerability in run-llama/llama_index Allowing Remote Code Execution

Vulnerability

A SQL injection vulnerability has been identified in the delete function of the DuckDBVectorStore component within run-llama/llama_index version 0.12.19. This vulnerability allows attackers to manipulate the ref_doc_id parameter, creating the potential to read and write arbitrary files on the server. Such actions could lead to remote code execution.

Impact

Exploitation of this vulnerability could allow attackers to execute arbitrary code on the server.

Reproduction

The vulnerability can be reproduced by sending a POST request to the '/delete' endpoint with a payload that includes a crafted ref_doc_id parameter. This payload can be designed to exploit the SQL injection vulnerability by, for example, injecting SQL commands that read or write files on the server.

Remediation

Users can update to run-llama/llama_index version 0.12.21 or later, where this vulnerability has been fixed.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.7

remediation

7.7

relevance

0.2

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.7

remediation

7.7

relevance

0.2

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

DuckDB SQL Injection Vulnerability in run-llama/llama_index Allowing Remote Code Execution

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating