A vulnerability classified as critical was found in MindsDB up to 24.7.4.0. This vulnerability affects unknown code of the component ChromaDB Integration. The manipulation leads to improper neutralization of directives in dynamically evaluated code (‘eval injection’).
This vulnerability was named CVE-2024-45848. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.