CVE-2024-3098 | run-llama llama_index up to 0.10.23 exec_utils code injection

Inserito da Angelo Barbosa | Apr 10, 2024 | CVE

A vulnerability has been found in run-llama llama_index up to 0.10.23 and classified as critical. This vulnerability affects the function exec_utils. The manipulation leads to code injection.

This vulnerability was named CVE-2024-3098. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-3098 | run-llama llama_index up to 0.10.23 exec_utils code injection

Post correlati

CVE-2024-9813 | Codezips Pharmacy Management System 1.0 product/register.php category sql injection

CVE-2023-52853 | Linux Kernel up to 6.6.1 cp2112 workqueue.c initialization

CVE-2024-35209 | Siemens SINEC Traffic Analyzer up to 1.1 HTTP Method routine (ssa-196737)

CVE-2024-20522 | Cisco RV042/RV042G/RV320/RV325 up to 4.2.3.14 Web-based Management Interface heap-based overflow (cisco-sa-sb-rv04x_rv32x_vulns-yJ2OSDhV)