Primary

Context

run-llama llama_index XML Entity Expansion Vulnerability Leading to Denial-of-Service

Vulnerability

A vulnerability allowing XML Entity Expansion, commonly known as a 'billion laughs' attack, has been identified in the sitemap parser of the run-llama/llama_index repository, specifically in version v0.12.21. This vulnerability enables an attacker to submit a malicious Sitemap XML, causing a Denial-of-Service (DoS) by depleting system memory and potentially leading to a system crash.

Impact

Exploitation of this vulnerability can cause excessive memory consumption, potentially leading to a system crash.

Reproduction

The vulnerability can be reproduced by uploading a malicious Sitemap XML file designed to exploit XML Entity Expansion. This can be done through the application's sitemap parser, which is located in the 'llama-index-integrations/readers/web/sitemap' directory.

Remediation

Users can upgrade to version v0.12.29 or later to address this vulnerability.

Added: Jul 7, 2025, 10:57 AM

Updated: Jul 7, 2025, 10:57 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.4

remediation

7.7

relevance

0.2

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.4

remediation

7.7

relevance

0.2

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

run-llama llama_index XML Entity Expansion Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating