A vulnerability has been found in run-llama llama_index up to 0.10.23 and classified as critical. This vulnerability affects the function exec_utils. The manipulation leads to code injection.

This vulnerability was named CVE-2024-3098. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.