CVE-2025-6209 | run-llama llama_index up to 0.12.40 generic_utils.py encode_image path traversal

Inserito da Angelo Barbosa | Lug 7, 2025 | CVE

A vulnerability was found in run-llama llama_index up to 0.12.40. It has been classified as problematic. This affects the function encode_image of the file generic_utils.py. The manipulation leads to path traversal: ‘..filename’.

This vulnerability is uniquely identified as CVE-2025-6209. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-6209 | run-llama llama_index up to 0.12.40 generic_utils.py encode_image path traversal

Post correlati

CVE-2024-41990 | gofiber Django up to 4.2.14/5.0.7 Template Filter urlize/urlizetrunc denial of service

CVE-2024-6354 | Devolutions Remote Desktop Manager up to 2024.2.11 on Windows PAM Dashboard access control (DEVO-2024-0010)

CVE-2024-26046 | Adobe Experience Manager up to 6.5.19 Form Field cross site scripting (apsb24-21)

CVE-2024-7193 | Mp3tag up to 3.26d DLL tak_deco_lib.dll uncontrolled search path