High severityNVD Advisory· Published Jul 7, 2025· Updated Jul 7, 2025
Arbitrary File Read through Path Traversal in run-llama/llama_index
CVE-2025-6209
Description
A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0.12.40, specifically within the encode_image function in generic_utils.py. This vulnerability allows an attacker to manipulate the image_path input to read arbitrary files on the server, including sensitive system files. The issue arises due to improper validation or sanitization of the file path, enabling path traversal sequences to access files outside the intended directory. The vulnerability is fixed in version 0.12.41.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
llama-index-corePyPI | >= 0.11.23, < 0.12.41 | 0.12.41 |
Affected products
2- Range: unspecified
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-2rhq-96q8-4vjqghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-6209ghsaADVISORY
- github.com/pypa/advisory-database/tree/main/vulns/llama-index/PYSEC-2025-65.yamlghsaWEB
- github.com/run-llama/llama_index/commit/cdeaab91a204d1c3527f177dac37390327aef274ghsaWEB
- huntr.com/bounties/e89d14f8-bfe8-4c9a-bb2a-656c01cc9a68ghsaWEB
News mentions
0No linked articles in our index yet.